Job Requirements
Charleston, SC
Top Secret Polygraph not specified
Early Career (2+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
BreakPoint Labs is seeking a CrowdStrike Operator to be responsible for the technical administration, operational response, and management of the enterprise’s endpoint security platform and supplemental endpoint security solutions. This role ensures the health of the sensors across all endpoints, manages security policies to meet compliance directives, and serves as a subject matter expert on endpoint threat mitigation. This position performs hands-on triage of security events, validates security configurations for policy compliance, and reports confirmed incidents to the CSSP.
Responsibilities include:
- Build, maintain, and optimize the CrowdStrike Falcon environment.
- Manage technical changes, respond to escalated Tier 2/3 issues, assist with compatibility evaluations, and perform root cause analysis.
-Proactively monitor and evaluate Falcon detections for malicious activity. Perform initial triage, tune prevention policies, develop custom Indicators of Compromise (IOC), and repot confirmed incidents to the CSSP.
-Validate and enforce security configurations against STIG and TASKORD directives to ensure policy compliance.
-Audit and validate the endpoint security posture for inspections and report alerting events to Market Place -Cyber Support (MPS) and ECMR for compliance monitoring.
-Implement the strategy for sensor deployment, security policy tuning, and the rollout of new capabilities (e.g. application control, device control) across the enterprise.
Required Responsibilities:
-3+ year's experience administering an enterprise endpoint security platform within a DoD/DoW context.
- Deep knowledge of the CrowdStrike Falcon platform, including Prevent/Insight (NGAV/EDR), Discover (Asset Inventory), Device Control (DLP), and Falcon Control (Application Control).
-Strong background in both Windows and Linux OS administration in a large enterprise (2,000+ servers).
-Excellent problem solving, analytical, and communication abilities.
-Ability to collaborate effectively with multiple teams in a fast-paced environment.
-Strong understanding of common enterprise technologies and cybersecurity principles.
-Experience developing security-focused content and dashboards in Splunk using endpoint security data desired.
Certifications Required: IAT Level II Certification (GSEC, Security+, SCNP, or SSCP)
Security Clearance Required: Minimum Interim Top Secret
Education Required: Bachelor’s Degree Area(s) of Study Bachelor’s degree in a related field.
Responsibilities include:
- Build, maintain, and optimize the CrowdStrike Falcon environment.
- Manage technical changes, respond to escalated Tier 2/3 issues, assist with compatibility evaluations, and perform root cause analysis.
-Proactively monitor and evaluate Falcon detections for malicious activity. Perform initial triage, tune prevention policies, develop custom Indicators of Compromise (IOC), and repot confirmed incidents to the CSSP.
-Validate and enforce security configurations against STIG and TASKORD directives to ensure policy compliance.
-Audit and validate the endpoint security posture for inspections and report alerting events to Market Place -Cyber Support (MPS) and ECMR for compliance monitoring.
-Implement the strategy for sensor deployment, security policy tuning, and the rollout of new capabilities (e.g. application control, device control) across the enterprise.
Required Responsibilities:
-3+ year's experience administering an enterprise endpoint security platform within a DoD/DoW context.
- Deep knowledge of the CrowdStrike Falcon platform, including Prevent/Insight (NGAV/EDR), Discover (Asset Inventory), Device Control (DLP), and Falcon Control (Application Control).
-Strong background in both Windows and Linux OS administration in a large enterprise (2,000+ servers).
-Excellent problem solving, analytical, and communication abilities.
-Ability to collaborate effectively with multiple teams in a fast-paced environment.
-Strong understanding of common enterprise technologies and cybersecurity principles.
-Experience developing security-focused content and dashboards in Splunk using endpoint security data desired.
Certifications Required: IAT Level II Certification (GSEC, Security+, SCNP, or SSCP)
Security Clearance Required: Minimum Interim Top Secret
Education Required: Bachelor’s Degree Area(s) of Study Bachelor’s degree in a related field.
group id: 90987816