Job Title

TalentXM is seeking an experienced CrowdStrike NG-SIEM: Threat Detection Consultant to join our dynamic team. The consultant will be responsible for leveraging the capabilities of CrowdStrike’s NG-SIEM (Next-Generation Security Information and Event Management) platform to detect and respond to cybersecurity threats. This role requires deep expertise in threat detection methodologies, SIEM systems, and cybersecurity best practices to ensure robust and proactive protection for our clients.Key Responsibilities:CrowdStrike NG-SIEM Deployment & Configuration: Install, configure, and optimize CrowdStrike’s NG-SIEM platform across various enterprise environments to ensure comprehensive threat detection capabilities.Threat Detection and Incident Response: Monitor, analyze, and respond to security incidents using CrowdStrike’s advanced threat detection tools. Investigate and mitigate potential cyber threats in real-time.SIEM Management & Optimization: Manage, tune, and optimize the SIEM platform to ensure maximum efficiency in identifying suspicious activities and anomalies.Collaboration with IT & Security Teams: Work closely with internal IT and security teams to integrate CrowdStrike NG-SIEM with existing security infrastructure and enhance overall threat management strategy.Incident Reporting & Analysis: Document and report security incidents and events, providing thorough analysis and actionable recommendations to mitigate risks.Security Risk Assessment: Conduct regular security assessments, vulnerability scans, and risk analysis to identify potential threats and improve overall security posture.Continuous Improvement: Stay current with the latest trends and emerging threats in the cybersecurity field, ensuring that detection mechanisms are up-to-date and effective.Training & Knowledge Sharing: Provide training and mentoring to internal teams and clients on the use and best practices of CrowdStrike NG-SIEM.Qualifications:Experience: Minimum of 5 years of hands-on experience working with CrowdStrike NG-SIEM, or similar SIEM platforms (Splunk, ArcSight, etc.).Cybersecurity Expertise: Strong knowledge of threat detection, incident response, and cybersecurity frameworks such as NIST, MITRE ATT&CK, and others.Technical Skills: Proficiency in SIEM tools, security event logging, network monitoring, and understanding of advanced persistent threats (APT).Cloud Security: Experience in securing cloud environments (AWS, Azure, GCP) and integrating them with SIEM platforms.Certifications: Relevant cybersecurity certifications such as CISSP, CISM, or CrowdStrike Certified Falcon Professional (CCFP) are preferred.Communication: Excellent communication skills to collaborate with teams and clients, and deliver clear technical documentation and incident reports.Problem-Solving: Strong analytical and problem-solving skills to investigate, mitigate, and prevent security incidents.Preferred Skills:Experience with other cybersecurity tools such as firewalls, EDR, IDS/IPS, and vulnerability management tools.Understanding of scripting languages (Python, Bash, PowerShell) for automation of security tasks.Familiarity with threat hunting techniques and advanced malware analysis.Ability to work in fast-paced, dynamic environments and handle complex security challenges.