Job Information
CrowdStrike, Inc. Vulnerability Management Analyst, (Remote, MST & PST) in Kirkland, Washington
CrowdStrike, Inc. Full time R18209
#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We're looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.
About the Role:
The Vulnerability Management team falls under our internal Infosec group and is responsible for VM across the organization. This team helps to identify, prioritize, and remediate vulnerabilities across various business units. This position requires deep technical knowledge to help troubleshoot issues and implementing of creative solutions.
What You'll Do:
Perform comprehensive vulnerability assessments and continuous monitoring across the enterprise.
Manage the entire lifecycle of vulnerabilities from discovery, triage, advising, remediation, and validation.
Work across functional areas to perform vulnerability assessments on systems or applications before go-live rollouts.
Triage patch Tuesday and security advisory releases and make recommendations on required remediations or actions.
Examine systems and applications to assess the current security posture.
Improve vulnerability management coverage and ensure enterprise assets have appropriate management.
Manage vulnerability related tickets to ensure issues are remediated within organization standards.
Engaged to team objectives and contributing efforts that results in risk reduction to the organization.
What You'll Need:
2+ years of professional experience working within a Vulnerability Management role.
Advanced knowledge of Server and client operating systems.
Extensive experience with core vulnerability management tools (e.g. CrowdStrike Falcon, Tenable, Rapid7, Qualys, etc.).
Extensive experience with web application scanners (e.g. Burp, Burp Enterprise, Accunetix, etc.).
Ability to prioritize impactful vulnerabilities and reduce noise often associated with vulnerability tools.
Experience working with Mac, Windows, Linux and/or other Unix-like variants.
Thorough understanding of TCP, UDP, HTTP, IP and other network protocols.
Understanding of how to triage vulnerabilities and validate tool findings before reporting them or taking action.
Possess the ability to work independently and contribute to a high-performing team.
Proactive go getter attitude to solve challenging problems.
Stays up to date with current vulnerabilities and vulnerability related news in various industries.
Bonus Points:
Ability to automate and script tasks using your preferred language (e.g. GoLang, Python, Ruby, BASH)
Ability to utilize and write scripts against common web APIs (REST, SOAP, GraphQL).
Knowledge of cloud platforms and highly concurrent systems.
Experience in regulated environments (FedRAMP, SOX, etc)
Experience working in a dynamic cloud environment.
Knowledge of container technology and how to a