Jobs · himalayas

K

Senior Manager - Cloud Security Engineer (CrowdStrike)

Ironwood Digital · United States · Posted 25d ago

remoteseniorEstimated 131k-280k USD🇺🇸 United States
Apply on himalayas

About the role

Build and lead Ironwood Digital's CrowdStrike Falcon Cloud Security deployment practice for clients.

At Ironwood Digital , we provide reactive, advisory, transformation, and managed security services to support clients at every stage of their path toward cyber and data resilience maturity. Our experts bring decades of experience in cyber risk consultancy, helping organizations across the world simplify and reduce the complexity of implementing, transforming, and managing their cyber programs. Through our strategic multi-year partnership with CrowdStrike, we combine world-class investigative expertise with an AI-native platform to redefine the future of managed detection and response, delivering faster outcomes, stronger protection, and greater resilience for organizations worldwide. The Cyber & Data Resilience capability is hiring a Manager or Senior Manager to build and lead Ironwood Digital 's CrowdStrike Falcon Cloud Security deployment practice . Falcon Cloud Security is the industry's first unified Cloud-Native Application Protection Platform (CNAPP), spanning CSPM, CWP, CIEM, KSPM, ASPM, DSPM, IaC scanning, and container and Kubernetes runtime protection across AWS, Azure, and Google Cloud — delivered through one sensor and one console, with both agent-based and agentless coverage. Ironwood Digital clients need a partner who can deploy, configure, integrate, and tune Falcon Cloud Security end-to-end inside their Falcon tenant — registering cloud accounts at scale across AWS Organizations, Azure tenants, and GCP projects; rolling out runtime protection across VMs, containers, and Kubernetes; wiring cloud log telemetry into Falcon Next-Gen SIEM for detection engineering; building Fusion SOAR playbooks for cloud-native response; and tuning IOM (Indicators of Misconfiguration) and IOA (Indicators of Attack) policies to maximize signal and minimize noise in each client's cloud estate. This is a player-coach role . The “Manager” or “Senior Manager” title does not mean hands-off oversight. You will personally lead engagement delivery — onboarding cloud accounts, deploying sensors and admission controllers, configuring CNAPP modules, building detection content, and integrating with the broader Falcon stack — while mentoring junior consultants and partnering with CrowdStrike account teams on scoping. This role reports into the Engineered Defense / Tech Transformation leadership team and partners closely with Ironwood Digital ’s Identity, Next-Gen SIEM, AIDR, and CrowdStrike Services delivery teams. Deploy Onboard client AWS, Azure, and GCP environments to Falcon Cloud Security at scale — using AWS CloudFormation StackSets across AWS Organizations, Bicep / Entra ID integrations for Azure tenants and management groups, and service account patterns for GCP projects and folders. Deploy the Falcon sensor across cloud workloads — EC2 / Azure VMs / GCE instances, container hosts, Kubernetes nodes — and stand up agentless snapshot-based scanning to fill coverage gaps. Deploy the Kubernetes Admission Controller to enforce pre-runtime policy on workload admission across EKS, AKS, GKE, and self-managed Kubernetes. Roll out container image registry scanning and IaC scanning (Terraform, CloudFormation, ARM/Bicep, Kubernetes manifests, Helm) into client CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins, Azure DevOps). Enable serverless protection for AWS Lambda, Azure Functions, and GCP Cloud Functions. Stand up CIEM across cloud identity providers (IAM users, roles, service accounts, managed identities) for least-privilege analysis. Configure Configure CSPM policies — IOM rules, custom misconfiguration detections, compliance frameworks (CIS Benchmarks, NIST, PCI-DSS, HIPAA, SOC 2), and exception management. Configure CWP runtime policies — IOA detections, prevention policies, container runtime protection, drift detection. Configure KSPM policies — Kubernetes posture, pod security standards, admission control rules, RBAC analysis. Configure ASPM and DSPM policies for application-security posture and data-security posture across cloud data stores. Configure CIEM — effective permission analysis, toxic combinations, privilege right-sizing, service-account hygiene. Configure ExPRT.AI risk prioritization to surface attack paths and toxic combinations across CSPM/CWP/CIEM signals. Build and tune custom detection content (IOAs, IOMs, CQL queries) for cloud-native attack techniques mapped to MITRE ATT&CK Cloud Matrix. Integrate Ingest cloud log telemetry into Falcon Next-Gen SIEM (LogScale) — AWS CloudTrail, GuardDuty findings, VPC Flow Logs, S3 access logs; Azure Activity Log, Defender for Cloud alerts, NSG Flow Logs, Entra ID sign-in logs; GCP Audit Logs, VPC Flow Logs, Security Command Center findings; EKS / AKS / GKE control plane logs; Kubernetes audit logs. Build detection engineering content in Next-Gen SIEM correlating Falcon Cloud Security findings with cloud provider native logs, endpoint telemetry, and identity events for full attack-path visibility. Build Falcon Fusion SOAR playbooks for cloud-native response actions: quarantine compromised workload, revoke IA

Read the full posting on himalayas

FAQ

Is the Senior Manager - Cloud Security Engineer (CrowdStrike) role at Ironwood Digital remote?+

This Senior Manager - Cloud Security Engineer (CrowdStrike) position is listed as remote (United States).

What is the salary for the Senior Manager - Cloud Security Engineer (CrowdStrike) role at Ironwood Digital?+

The listing states Estimated 131k-280k USD.

What seniority level is this Senior Manager - Cloud Security Engineer (CrowdStrike) role?+

This is a senior level position.

How do I apply for the Senior Manager - Cloud Security Engineer (CrowdStrike) role at Ironwood Digital?+

Use the "Apply on himalayas" button to open the original posting on himalayas, where you can submit your application directly to Ironwood Digital.