Mediabistro logo
job logo

CrowdStrike Operator

BreakPoint Labs LLC, Charleston, SC, United States

BreakPoint Labs is seeking a CrowdStrike Operator to be responsible for the technical administration, operational response, and management of the enterprise’s endpoint security platform and supplemental endpoint security solutions. This role ensures the health of the sensors across all endpoints, manages security policies to meet compliance directives, and serves as a subject matter expert on endpoint threat mitigation. This position performs hands‑on triage of security events, validates security configurations for policy compliance, and reports confirmed incidents to the CSSP.

Responsibilities

Build, maintain, and optimize the CrowdStrike Falcon environment.

Manage technical changes, respond to escalated Tier 2/3 issues, assist with compatibility evaluations, and perform root cause analysis.

Proactively monitor and evaluate Falcon detections for malicious activity. Perform initial triage, tune prevention policies, develop custom Indicators of Compromise (IOC), and repot confirmed incidents to the CSSP.

Validate and enforce security configurations against STIG and TASKORD directives to ensure policy compliance.

Audit and validate the endpoint security posture for inspections and report alerting events to Market Place Cyber Support (MPS) and ECMR for compliance monitoring.

Implement the strategy for sensor deployment, security policy tuning, and the rollout of new capabilities (e.g. application control, device control) across the enterprise.

Required Responsibilities

3+ years experience administering an enterprise endpoint security platform within a DoD/DoW context.

Deep knowledge of the CrowdStrike Falcon platform, including Prevent/Insight (NGAV/EDR), Discover (Asset Inventory), Device Control (DLP), and Falcon Control (Application Control).

Strong background in both Windows and Linux OS administration in a large enterprise (2,000+ servers).

Excellent problem solving, analytical, and communication abilities.

Ability to collaborate effectively with multiple teams in a fast‑paced environment.

Strong understanding of common enterprise technologies and cybersecurity principles.

Experience developing security‑focused content and dashboards in Splunk using endpoint security data desired.

Certifications Required
IAT Level II Certification (GSEC, Security+, SCNP, or SSCP)

Security Clearance Required
Minimum Interim Top Secret

Education Required
Bachelor’s Degree Area(s) of Study: Bachelor’s degree in a related field.

#J-18808-Ljbffr