[Remote] CrowdStrike Platform Engineer

Note: The job is a remote job and is open to candidates in USA. Tekgence Inc is seeking experienced CrowdStrike Platform Engineers to join a growing enterprise security team. In this role, you will be responsible for the deployment, configuration, tuning, and ongoing operations of the CrowdStrike Falcon platform across a complex enterprise environment, working closely with security operations, architecture, and IT teams.

Responsibilities

• Deploy, configure, and maintain CrowdStrike Falcon platform components including EDR/XDR, CNAPP, NG-SIEM, Exposure Management, and Identity Protect
• Administer and tune Falcon IT policies, detection rules, and response workflows
• Build and maintain LogScale/NG-SIEM queries, dashboards, and alerting pipelines
• Integrate CrowdStrike Shield for adversarial AI threat intelligence and response
• Collaborate with SOC and detection engineering teams to improve signal fidelity and reduce false positives
• Support cloud security posture management through CNAPP capabilities
• Develop and maintain platform documentation, runbooks, and standard operating procedures
• Participate in incident response activities and threat hunting exercises
• Evaluate and implement new CrowdStrike modules as the platform evolves

Skills

• 3+ years of hands-on experience with the CrowdStrike Falcon platform in an enterprise environment
• Demonstrated proficiency with Falcon EDR/XDR policy management and sensor deployment
• Experience with LogScale (formerly Humio) or NG-SIEM query development and log management
• Working knowledge of Falcon CNAPP for cloud workload and container security
• Familiarity with Falcon Exposure Management for attack surface reduction
• Strong understanding of endpoint security concepts, threat actor TTPs, and the MITRE ATT&CK framework
• Experience in at least one scripting language (Python, PowerShell, or Bash) for automation and integration tasks
• Strong written and verbal communication skills; ability to work cross-functionally with technical and non-technical stakeholders
• CrowdStrike Certified Falcon Administrator (CCFA) or equivalent certification
• Experience with Falcon Identity Protect and integrating with Active Directory / Azure AD
• Background in cloud-native environments (AWS, Azure, GCP) and container/Kubernetes security
• Prior experience in energy, utilities, financial services, or other regulated industries
• Familiarity with SIEM/SOAR integrations and API-based automation workflows

Company Overview

Company H1B Sponsorship