Insider Investigations Analyst
@ CrowdStrike

Hybrid
$130,000
Hybrid
Full Time
Posted 11 hours ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXX XXXXXXXXXXX XXXXXX***** @crowdstrike.com
Recommended after applying

Job Details

About CrowdStrike

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies driving modern organizations. Our mission remains the same: stop breaches using the world’s most advanced AI-native platform.

About The Role

CrowdStrike is looking for a highly motivated, self-driven Insider Investigations Analyst to support the Insider Risk Team Program. This remote role involves triaging and investigating insider risk alerts, performing live responses, containment, escalation, and detailed incident response actions.

What You’ll Do

  • Participate in confidential insider risk investigations
  • Create and implement insider risk related detections
  • Perform comprehensive investigations using network, host, and open source data
  • Communicate with end users about potential policy violations
  • Assist in data recovery and report creation
  • Provide executive notifications and documentation of investigations
  • Support Incident Response lifecycle and after-hours support as needed

What You’ll Need

  • Experience with data classification and risk scoring methodologies
  • Strong verbal and written communication skills
  • Ability to manage multiple investigations simultaneously
  • Experience with security event alerts, incident escalation, and triage
  • Proficiency with Mac, Linux, Windows, TCP/IP networking, ASM and SIEM workflows
  • Scripting experience (Bash, PowerShell, etc.) and knowledge in REGEX, SQL, and network analysis tools
  • Applicable security certifications or equivalent experience

Bonus Points

  • Scripting experience with Python or Perl
  • Experience with Splunk or Falcon LogScale query language
  • User behavior analytics and profiling tools
  • Experience in fine-tuning detection/alert logic

Benefits of Working at CrowdStrike

  • Remote-friendly and flexible culture
  • Market leading compensation and equity awards
  • Comprehensive wellness and development programs
  • Paid parental leaves and competitive vacation policies

Equal Opportunity

CrowdStrike is an equal opportunity employer committed to diversity, and encourages veterans and individuals with disabilities to apply.

Additional Information

The base salary range for U.S. candidates is $100,000 - $155,000 per year with eligibility for bonuses, equity, and comprehensive benefits.

Key skills/competency

  • Cybersecurity
  • Incident Response
  • Risk Investigation
  • Data Analysis
  • Threat Hunting
  • Scripting
  • Network Security
  • SIEM
  • Detection Tuning
  • Communication
Apply without a personalized resume

How to Get Hired at CrowdStrike

🎯 Tips for Getting Hired

  • Research CrowdStrike's culture: Study mission, values, and employee reviews.
  • Customize your resume: Highlight cybersecurity and incident response expertise.
  • Emphasize experience: Detail risk investigations and technical skills.
  • Prepare for technical questions: Review SIEM and scripting tools.
  • Practice clear communication: Prepare concise responses for executive updates.

📝 Interview Preparation Advice

Technical Preparation

Review SIEM and threat hunting fundamentals.
Practice scripting with Bash and PowerShell.
Study network protocols and TCP/IP troubleshooting.
Familiarize with attack surface mapping tools.

Behavioral Questions

Describe managing simultaneous investigations.
Explain handling confidential information discretely.
Share past experiences working independently.
Discuss communication under high-pressure situations.

Frequently Asked Questions