Director, Incident Response (Remote)

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role:

CrowdStrike is looking for a highly motivated, self-driven, Director for it’s incident response team, dedicated to making a difference in global security by protecting organizations against the most advanced attackers in the world. Our CrowdStrike Services team offers opportunities to expand your skill set through a wide variety of engagements including front page incident response investigations for organizations you’ll find on the annual Fortune 100 list. 

This position is open to remote candidates in the US.

Am I a Director of Incident Response Candidate?

• Are you capable of leading technical teams and interacting with customers entangled in complicated and difficult situations?

• Are you passionate about the possibilities of AI in incident response?

• Are you able to lead teams through complicated incident response investigations?

• Do you find yourself interested in and keeping up with the latest vulnerabilities and breaches?

• Are you self-motivated and looking for an opportunity to rapidly accelerate your skills?

• Do you crave new and innovative work that actually matters to your customer?

• Do you have an Incident Response or Information Security background that you want to fully utilize?

• Do you love working around like-minded, smart people who you can learn from and mentor on a daily basis?

• Can you assess complicated problems and address them in a strategic fashion?

What You’ll Do:

• Oversee our IR Technical Leads to most effectively perform technical knowledge sharing and mentoring across entire IR practice

• Collaborate and drive the vision of AI for incident response to ensure AI is maximally but carefully leveraged throughout the IR practice

• Lead incident response teams and provide high-level oversight on IR engagements

• Perform initial triage and scoping for prospective clients to understand the client objectives and level of effort involved to complete objectives

• Effectively communicate with executives on the topics of forensics and malware analysis

• Develop, evaluate and use new methods to hunt for bad actors across large sets of data

• Work under the direction of outside counsel to conduct intrusion investigations

• Coach and mentor project managers and analysts on performing host and/or network-based forensics across Windows, Mac, and Linux platforms

• Provide strategic, applicable, and feasible recommendations to help mature the security posture of organizations during and after an incident

• Produce high-quality written and verbal reports, presentations, recommendations, and findings to key stakeholders including customer management, regulators, and legal counsel

• Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events

What You'll Need:

Successful candidates will have experience in one or more of the following areas:

• Team leadership experience in a matrixed consulting remote environment with a focus of leading highly technical teams

• Incident Response: experience conducting or managing incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat (APT), Organized Crime, and Hacktivists

• Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise

• Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations

• Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations

• Cloud Incident Response: knowledge in any of the following areas: AWS, Azure, GCP incident response methodologies

• Large Language Models (LLMs): a basic to intermediate understanding of how LLMs work and their capabilities

Additionally, all candidates must possess the following qualifications:

• Capable of leading teams of highly motivated technical analysts 

• Ability to communicate highly technical information to non-technical people

• Ability to lead clients through high stress situations 

• Strong project management skills

• Contributing thought leader within the incident response industry

• Ability to foster a positive work environment and attitude

• Ability to travel on short notice, up to 30% of the time

#LI-Remote

#LI-AC1

This role may require the candidate to periodically undergo and pass alcohol and/or drug test(s) during the course of employment.

Benefits of Working at CrowdStrike:

• Remote-friendly and flexible work culture

• Market leader in compensation and equity awards

• Comprehensive physical and mental wellness programs 

• Competitive vacation and holidays for recharge  

• Paid parental and adoption leaves

• Professional development opportunities for all employees regardless of level or role

• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections

• Vibrant office culture with world class amenities

• Great Place to Work Certified™ across the globe

Right to Work

CrowdStrike, Inc. is committed to fair and equitable compensation practices. Placement within the pay range is dependent on a variety of factors including, but not limited to, relevant work experience, skills, certifications, job level, supervisory status, and location. The base salary range for this position for all U.S. candidates is $185,000 - $240,000 per year, with eligibility for bonuses, equity grants and a comprehensive benefits package that includes health insurance, 401k and paid time off.

For detailed information about the U.S. benefits package, please click here. 

Expected Close Date of Job Posting is:11-02-2025