Principal Consultant, Red Team (Remote)

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn't changed - we're here to stop breaches, and we've redefined modern security with the world's most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward.

We're also a mission-driven company. We cultivate an inclusive culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We're always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other.

Ready to join a mission that matters? The future of cybersecurity starts with you.About the Role:The Sr./Principal Consultant will perform Red Team activities simulating known and unknown threat actors to help CrowdStrike customers determine the impact and likelihood of threat actors to accomplish objective across the Kill Chain and MITRE ATT&CK Framework. The Sr./Principal Red Team Consultant is expected to be able to coordinate with senior leadership, plan, and oversee execution of assessments and assist the other CrowdStrike Services' functions to help improve customers security defense.

This person should be capable of supporting, managing, and mentoring less experienced red team members.What You'll Do:Act as a primary contact for coordination of Red Team activities as well as coordinating and leading all penetration testing activitiesDevelop reporting including mitigations strategies of results of Red Team activities for both management and technical audiencesMust be able to effectively communicate at all levels (executive leadership and technical support teams) within CrowdStrikeOrganize resources to perform penetration assessments of operating systems, applications, databases and network infrastructure components to emulate threatsWork with a diverse team and lead/assist in developing and improving an information security program and information security resourcesMust be able to work as an operator and project manager on various types of penetration testing offeringsYou will utilize and develop both open-source and in-house toolkits and identify and implement long-term enhancements to the practice to better enable clients to stop breachesWhat You'll Need:Minimum 5 years of experience in a Red Team/Penetration Testing activities is highly preferredMinimum 1 year of experience in a project management role is highly preferredAdvanced experience with Red Teaming (vulnerability/penetration testing/adversary emulation assessments)Advanced experience in automation and scripting of applications and systemsAdvanced experience with Security Assessment Tools (Cobalt Strike, other C2 Frameworks, Nessus, Burp)Comprehensive understanding of the latest security methodologies, technologies, and best practicesAdvanced knowledge of:Windows OSLinux/Unix and Mac operating systems is highly preferredTesting cloud environments (e.g. Azure, AWS) is highly preferredSocial engineering (phishing, vishing) techniques is highly preferredFirewalls, proxies, mail servers and web serversOperational support for operating systems, applications and networksDesirable certifications include: OSCP, OSEP, OSCE, CRTO, GPEN, GCIH, GXPNOccasional travel may be required (