Cloud Security Engineer

Role Summary\nThe Cloud Security Platform Engineer is responsible for supporting the deployment, configuration, and operationalization of CrowdStrike Falcon Platform cloud security modules within customer environments. This role focuses on implementation guidance, configuration, policy enablement, alerting workflows, dashboards, and operational best practices across cloud and SaaS platforms.\nThe engineer works closely with customer stakeholders to ensure successful adoption of one Falcon cloud module per engagement, operating within defined delivery terms and approved scope.\n\nSupported Falcon Modules (One per Engagement)\nFalcon Cloud Security Posture Management (FCS)\nFalcon Cloud Workload Protection (FCS + Containers)\nFalcon Application Security Posture Management (ASPM)\nFalcon Shield (SSPM)\n\nKey Responsibilities\nGeneral Responsibilities\nDeliver platform-aligned cloud security services within CrowdStrike Falcon\nConduct workshops, implementation sessions, and configuration reviews\nGuide customers on best practices, dashboards, alerting, and remediation workflows\nCollaborate with customer teams to validate requirements and approvals\nOperate within defined operational services scope (no custom development)\nFalcon Cloud Security Posture Management (FCS)\nDeliver FCS workshops and common practices reviews\nGuide cloud account registration for AWS, Azure, GCP, and OCI\nReview Indicators of Misconfiguration (IOMs) and Indicators of Attack (IOAs)\nAssist with detection policy reviews and remediation process definition\nConfigure dashboards and asset visibility for unmanaged or unprotected assets\nGuide attack path analysis configuration and remediation strategy development\nProvide guidance for AWS EC2 1Click sensor deployment\nFalcon Cloud Workload Protection (FCS + Containers)\nSupport agent and sensor deployment across workloads and container environments\nGuide configuration of container components and detection containers\nAssist with image assessment framework setup (registries, CI/CD integration, vulnerability analysis)\nValidate container monitoring, compliance tracking, and visibility\nAdvise on policy framework implementation and dashboard configuration\nGuide setup of dashboards and reporting for workloads, images, vulnerabilities, and compliance\nReview and configure Fusion workflows for workload and container alerts\nSupport Falcon API usage for integrations (no custom development)\nFalcon Application Security Posture Management (ASPM)\nConfigure multicloud integration across AWS, Azure, GCP, and Kubernetes\nImplement collectors and security signal integrations\nAssist with service classification, automated tagging, and workflow configuration\nIntegrate third-party tools (e.g., Jira, Slack) for workflow automation\nAdvise on custom policy configuration, violation analysis, and remediation recommendations\nGuide reporting framework setup, RBAC configuration, and SAML/SSO integration\nFalcon Shield (SSPM)\nGuide navigation, user settings, and access to Falcon Shield resources\nSupport SaaS application integration and connectivity validation\nAssist with security posture check configuration and baseline metric reviews\nAdvise on alert channel configuration and escalation procedures\nGuide ticketing workflow setup and tracking mechanisms\n(Custom integrations require a separate Professional Services SOW)\n\nRequired Skills & Experience\nTechnical Skills\nHands-on experience with CrowdStrike Falcon Cloud Services\nExperience with 2 or more of the following modules:\nFalcon Cloud Security Posture Management (FCS)\nFalcon Cloud Workload Protection (FCS + Containers)\nFalcon Application Security Posture Management (ASPM)\nFalcon Shield (SSPM)\nExperience with cloud platforms: AWS, Azure, GCP (OCI is a plus)\nFamiliarity with cloud security concepts:\nCSPM\nCWPP\nCI/CD security\nContainer security experience (Kubernetes, image scanning)\nSaaS Security Posture Management (SSPM) knowledge\nExperience working with security dashboards, alerts, and remediation workflows\nUnderstanding of IAM, RBAC, and SAML/SSO integrations\nExposure to SOAR workflows and alert automation\nProfessional Skills\nStrong customer-facing communication skills\nAbility to lead workshops and technical review sessions\nExperience working within defined service scope and delivery timelines\nComfortable coordinating with cloud, security, and DevOps teams\nEngagement Parameters\nSupports ONE Falcon cloud module per engagement\nDelivery term: Up to 60 days\nNo custom development or unsupported integrations\nAdditional customization requires a separate Professional Services SOW\n\nIdeal Background\nCloud Security Engineer\nCloud Platform Engineer (Security-focused)\nDevSecOps Engineer\nSecurity Operations / Platform Enablement Engineer