As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. We work on large scale distributed systems, processing almost 3 trillion events per day and this traffic is growing daily. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.
About the Role:
We're seeking a talented DevSecOps Engineer to join the NG SIEM Onum team and work directly with our security and infrastructure leadership. This role is critical in embedding security-first practices into our development lifecycle while maintaining the agility and speed that defines our innovation culture. You'll be instrumental in securing our CI/CD pipelines, infrastructure, and applications while enabling developers to ship secure code faster.
What You'll Do:
Security Integration & Automation (40%):
Embed security controls throughout the entire DevOps lifecycle, from code commit to production deployment
Design and implement automated security gates within CI/CD pipelines using tools like GitHub Actions, Jenkins, or GitLab CI
Build security-as-code frameworks that make secure practices the default path for developers
Automate compliance checks and security policy enforcement across cloud infrastructure (AWS, GCP)
Develop custom security tooling to address Onum specific security requirements
Vulnerability & Risk Management (25%):
Proactively identify and remediate security vulnerabilities in applications, containers, and infrastructure
Conduct threat modeling for new services and features before they reach production
Perform risk assessments on architectural decisions and third-party integrations
Manage vulnerability lifecycle from detection through remediation, tracking metrics and SLAs
Implement and maintain vulnerability scanning tools integrated into development workflows
Security Testing & Validation (20%):
Execute comprehensive security testing including SAST, DAST, SCA, and container security scanning
Perform code reviews with a security lens, identifying potential vulnerabilities before merge
Validate security controls through continuous testing and red team exercises
Establish security testing standards and ensure coverage across the project
Incident Response & Collaboration (15%):
Help to respond to security incidents affecting Onum’s infrastructure and applications
Collaborate with CrowdStrike SOC and incident response teams during security events
Conduct post-incident reviews and implement preventive measures
Work cross-functionally with development, operations, and security teams to foster shared security responsibility
Partner with the Manager on strategic security initiatives and architectural decisions
What You'll Need:
Technical Expertise:
3+ years of experience in DevOps, Security Engineering, or related roles
Strong programming skills in Python, Go, or similar languages for automation and tooling
Deep knowledge of cloud platforms, particularly AWS (EC2, S3, VPC, Security Groups, CloudTrail)
Hands-on experience with:
Containerization: Docker, container security best practices
Orchestration: Kubernetes, EKS, security policies, RBAC
IaC: Terraform, CloudFormation, security scanning for IaC
CI/CD: GitHub Actions, Jenkins, GitLab CI, security pipeline integration
Configuration Management: Ansible, Chef, or Puppet
Security Knowledge:
Strong understanding of:
OWASP Top 10 and secure coding practices
Network security, firewalls, ACLs, and segmentation
Secrets management (HashiCorp Vault, AWS Secrets Manager)
Security compliance frameworks (SOC 2, ISO 27001, NIST)
Experience with security tools:
Vulnerability scanners (Nessus, Qualys, Rapid7)
SAST/DAST tools (SonarQube, Checkmarx, Burp Suite)
Container security (Trivy, Aqua, Twistlock)
SIEM and log analysis
Git security scanning (GitGuardian, TruffleHog)
Soft Skills:
Excellent communication - ability to explain complex security concepts to developers and leadership
Collaborative mindset - security is a team sport at CrowdStrike
Problem-solving orientation - creative approaches to balancing security and developer velocity
Self-motivated - ability to work independently and drive initiatives to completion
Adaptability - comfortable in a fast-paced, innovative environment
Bonus Points:
Security certifications: AWS Security Specialty, CKS (Certified Kubernetes Security Specialist), Certified DevSecOps Professional (CDP), GIAC Cloud Security Automation (GCSA) or equivalen security certifications.
Contributions to open-source security projects
Familiarity with zero-trust architecture principles
#LI-MB1
Benefits of Working at CrowdStrike:
Remote-friendly and flexible work culture
Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe
CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.
CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.
If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at [email protected] for further assistance.
Top Skills
What the Team is Saying
What We Do
CrowdStrike has redefined security with the world’s most advanced cloud-native platform that protects and enables the people, processes and technologies that drive modern enterprise. Tested and proven, the world's largest organizations trust CrowdStrike to stop breaches with unparalleled protection against the most sophisticated cyberattacks.
The CrowdStrike culture has been built upon our Core Values since the day we began. We are Fanatical About the Customer, Relentlessly Focused on Innovation and believe that our Limitless Passion drives Unlimited Potential for every CrowdStriker. As a purpose-built remote-first company, we believe cultivating a connected culture for every employee, no matter where they are in the world, is a key ingredient in building a high-performing, diverse team.
We don’t have a mission statement. We’re on a mission—to stop breaches. Ready to join a mission that matters?
Why Work With Us
We have a culture that celebrates achievement, encourages flexibility and innovation and thrives on teamwork. We all work towards a single mission: to stop breaches. This common goal drives a sense of community and connection among our people across the globe.
Gallery
CrowdStrike Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
