REMOTE CrowdStrike Engineer
Role details
Job location
Tech stack
Job description
100% project-driven work aligned to two major transformation initiatives (no BAU)
-
Support a CrowdStrike-led convergence project, migrating from Splunk to a next-gen SIEM
-
Lead log-scale migrations, including deploying CrowdStrike agents across endpoints
-
Partner closely with IT and data engineering to ensure full asset and log coverage
-
Review SIEM indexes and log types to confirm proper parsing and ingestion
-
Build, validate, and tune rules and detections across Splunk and the next-gen SIEM
-
Perform data integrity and parity checks to ensure accuracy between environments
-
Translate and migrate datasets between toolsets (e.g., Splunk * CrowdStrike)
-
Act as a hands-on security engineering representative, bridging SOC, governance, and engineering teams
-
Coordinate with vendors as needed to keep migration timelines moving
Requirements
Strong experience with CrowdStrike and a next-gen SIEM 2-5 years experience
-
Deep familiarity with Splunk (current SIEM "powerhouse")
-
Experience validating log parsing, ingestion, and data accuracy
-
Exposure to vulnerability and security tooling such as: Checkmarx, Obsidian, Invicti, Tenable VM
-
Some software development or automation experience, especially for integrations
-
Python preferred, but language-agnostic is acceptable
-
Prior involvement in a SIEM migration or major SIEM integration
-
Experience moving data between platforms and environments (roughly 50% of the role)
-
Ability to operate in a project-only environment with urgency and ownership - Security certifications such as CCSE or CCSA
-
Experience in banking, finance, or other large regulated enterprises
-
Previous work in large-scale enterprise environments
-
Broader industry experience beyond security (helpful for integrations)
-
Proven success on multi-tool security transformations
-
Background that shows strong ownership during periods of turnover or net-new project builds