Overview
We are looking for an experienced SC cleared CrowdStrike deployment engineer to support the Cyber Engineering team in deploying CrowdStrike across Enterprise servers and endpoints, including work on the Engineering teams side of the deployment to Cloud servers and containers.
Responsibilities
* Deployment of CrowdStrike Falcon across in-scope endpoints and servers (cloud and hybrid).
* Installation and onboarding of Falcon sensors to target workloads.
* Configuration of Falcon policies, including:
o Threat prevention (NGAV)
o Detection and response (EDR/XDR)
o Sensor management, updates, and grouping policies
o Alignment of host groups and policies to organisational requirements.
* Handover sessions with relevant teams
* Integration with identity/directory services for visibility and correlation.
* Tuning of detection capabilities, including custom detection logic within agreed capacity.
* Integration with SIEM/SOC platforms for alerting, event correlation, and centralised monitoring.
* Enablement of response capabilities (host containment, Real Time Response).
* Validation, testing, and troubleshooting of deployment and configuration (sample-based and advisory).
Documentation and Knowledge Transfer
* Deployment architecture and policy structures
* Operational runbooks for detection and response
J-18808-Ljbffr