Cyber Security Technical Lead

Description Role: Cyber Security Technical Lead Location: Working Type: Position Overview We are seeking a highly skilled Cybersecurity Technical Lead to design, implement, and optimize our next-generation security operations framework. The ideal candidate will be a subject matter expert in the CrowdStrike Falcon platform, specifically leveraging EDR, Next-Gen SIEM, and SOAR to create a unified, automated defense posture. You will also play a critical role in data protection by integrating DLP (Data Loss Prevention) and DSPM (Data Security Posture Management) into our broader security architecture. Key Responsibilities • Platform Architecture: Lead the architectural design and lifecycle management of the Falcon ecosystem. Ensure seamless integration between EDR agents, SIEM ingestion, and SOAR automation. • CrowdStrike EDR: Extensive engagement with EDR, continuous policy tuning, expert specialist, real time response, build custom IOA, specialist is Behavioral Analytical Thinking. • Next-Gen SIEM & Log Management: Design and optimize CrowdStrike Next-Gen SIEM. Create custom parsers, complex queries, and dashboards to provide real-time visibility across multi-cloud and on-prem environments. • Automation & Orchestration: Build and maintain sophisticated SOAR (Falcon Fusion/Workflow) playbooks to automate repetitive tasks, reduce Mean Time to Respond (MTTR), and streamline incident escalation. • MITRE ATT&CK Mapping: The ability to map Falcon detections to specific adversary tactics and techniques to understand the full scope of an intrusion. • Data Security Integration: Work with stakeholders to implement DLP and DSPM strategies. Ensure that sensitive data is identified, mapped, and protected across SaaS, Cloud, and Endpoint environments. Have some working knowledge on DLP & DSPM. • Cloud technology: Understanding of cloud technology & should understand core services deeply. • Threat Modeling: Conduct architectural threat modeling to identify gaps in detection coverage and recommend specific CrowdStrike modules or third-party integrations to mitigate risks. • Policy Governance: Define and enforce security configuration standards (prevention policies, USB device control, firewall management) across the global endpoint fleet. Qualifications • Education: Bachelor’s degree in Business, Technical Communication, Information Technology, or related field. • CISSP, CISM or equivalent certification (good to have) • CCFA (Falcon Administrator) is very good to have • Some cloud security certification (good to have) • CrowdStrike: Expert-level knowledge of Falcon Insight (EDR), Falcon Next-Gen SIEM, and Falcon Fusion (SOAR). • Cloud Security: Deep understanding of AWS, Azure, or GCP security architectures and how they feed into a centralized SIEM. • Scripting: Ability to use Python, PowerShell, JavaScript, to interact with APIs (specifically the Falcon API). • Experience: • 7+ years in Cybersecurity • (MUST) At least 3+ years specifically focused on (preferably CrowdStrike) EDR, NG-SIEM & SOAR. • A quality endpoint security Specialist with CrowdStrike EDR, NG-SIEM & SOAR focus. • Excellent written and verbal communication skills. • Proficiency in documentation tools (e.g., Confluence, SharePoint, MS Office). • Familiarity with Agile methodologies and risk management practices. • Ability to manage multiple priorities in a fast-paced environment. Skills: Core Competencies • Strategic thinking and problem-solving. • Attention to detail and commitment to quality. • Strong interpersonal and stakeholder management skills. • Adaptability and continuous learning mindset. Soft Skills • Strategic Vision: Ability to translate complex business requirements into technical security blueprints. • Collaboration: Experience working closely with SOC analysts, DevOps teams, and executive leadership. • Problem Solving: A "security through automation" mindset—constantly looking for ways to replace manual processes with code. About Us Fortive - Corporate Profile Fortive’s essential technology makes the world stronger, safer, and smarter. We accelerate transformation across a broad range of applications including environmental, health and safety compliance, industrial condition monitoring, next-generation product design, and healthcare safety solutions. We are a global industrial technology innovator with a startup spirit. Our forward-looking companies lead the way in software-powered workflow solutions, data-driven intelligence, AI-powered automation, and other disruptive technologies. We’re a force for progress, working alongside our customers and partners to solve challenges on a global scale, from workplace safety in the most demanding conditions to groundbreaking sustainability solutions. We are a diverse team 18,000 strong, united by a dynamic, inclusive culture and energized by limitless learning and growth. We use the proven Fortive Business System (FBS) to accelerate our positive impact. The company in which you have expressed employment interest is a subsidiary or affiliate of Fortive Corporation. The subsidiary or affiliate is referred to as a Fortive Company. Fortive Corporation and all Fortive Companies are equal opportunity employers that evaluate qualified applicants without regard to race, color, national origin, religion, ancestry, sex (including pregnancy, childbirth and related medical conditions), age, marital status, disability, veteran status, citizenship status, sexual orientation, gender identity or expression, and other characteristics protected by law. At Fortive, we believe in you. We believe in your potential—your ability to learn, grow, and make a difference. At Fortive, we believe in us. We believe in the power of people working together to solve problems no one could solve alone. At Fortive, we believe in growth. We’re honest about what’s working and what isn’t, and we never stop improving and innovating. Fortive: For you, for us, for growth. Ready to move your career forward? Find out more at careers.fortive.com.