Detection Focused Senior Cloud Security Consultant - JAPAC (Remote)

<div><div><div><div><div><div><p style="text-align:left">As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.</p><p style="text-align:inherit"></p></div></div></div></div></div></div><p><b>About the Role:</b></p><p><span>CrowdStrike is looking for a technically strong, self-directed cloud security professional to join our Professional Services team in the JAPAC region. This is a hands-on role for someone with genuine curiosity about cloud attack techniques and a drive to build the detection and defensive capability to counter them.</span></p><p></p><p><span>You'll work with complex, high-profile organisations across the region, helping them understand where they're exposed, sharpen their detection capabilities, and close the gaps that adversaries look for. The work demands both technical depth and client credibility, so you'll need to be effective at both.</span></p><p></p><p><b>What You'll Do:</b></p><ul><li><p><span>Conduct cloud security assessments across a range of environments, focusing primarily on AWS and Azure: reviewing configurations, identity architectures, network exposure, and attack paths to surface the risks that actually matter.</span></p></li><li><p><span>Design and build detection logic and alerting for cloud control plane activity, identity-based threats, and <span style="overflow-wrap: break-word; display: inline; text-decoration: inherit; hyphens: auto;">misconfiguration-driven</span> exposure across cloud-native and third-party security platforms.</span></p></li><li><p><span>Write automation to speed up assessment work, extract and correlate data across large datasets, and turn repeatable analysis into something the team can use again.</span></p></li><li><p><span>Partner with our Red Team during Purple Team exercises: testing customer detection and response capabilities and translating the gaps into concrete recommendations.</span></p></li><li><p><span>Collaborate with internal delivery teams to help turn assessment findings into detection content that's ready to deploy.</span></p></li><li><p><span>Produce clear, high-quality reports and presentations for technical and executive audiences.</span></p></li><li><p><span>Run client engagements from scoping through delivery, keeping stakeholders well-informed throughout.</span></p></li><li><p><span>Help push our service offerings forward through methodology development, tooling contributions, and public-facing thought leadership.</span></p></li></ul><p></p><p><b>​What You'll Bring: </b></p><p><b>Cloud Platforms</b></p><ul><li><p><span>Strong practical experience with AWS and Azure, including identity, compute, networking, storage, serverless, and logging and monitoring services.</span></p></li><li><p><span>A solid grasp of cloud architecture patterns and where security assumptions tend to break down in practice.</span></p></li><li><p><span>GCP experience is a plus, but not a requirement.</span></p></li></ul><p></p><p><b>Detection Engineering</b></p><ul><li><p><span>Experience building detection content that works: writing queries, developing alerting logic, and cutting through noise in cloud-native and third-party SIEM/XDR environments.</span></p></li><li><p><span>A working knowledge of how threat actors operate in cloud environments, and the ability to translate that into detections that actually fire on the right things.</span></p></li></ul><p></p><p><b>Cloud Security Configuration Analysis</b></p><ul><li><p><span>Experience tracing how misconfigurations chain together into realistic attack paths — analysis that tells a coherent story rather than producing a list of isolated findings.</span></p></li><li><p><span>Familiarity with common cloud attack patterns: privilege escalation, lateral movement, persistence, and data exfiltration.</span></p></li></ul><p></p><p><b>Automation and Tooling</b></p><ul><li><p><span>Solid scripting ability in Python or equivalent, comfortable building tools to automate assessment tasks, work with large datasets, and extend existing frameworks.</span></p></li><li><p><span>Experience writing queries across platforms such as KQL, SPL, or cloud-native query engines.</span></p></li><li><p><span>Comfortable using AI tooling to sharpen and accelerate their work — whether for code generation, data analysis, query development, or documentation — with enough critical judgement to know when the output needs work.</span></p></li></ul><p></p><p><b>Communication</b></p><ul><li><p><span>Strong written and verbal communication in English. You can write a finding that prompts a CISO to act and explain a detection gap to an engineer without losing either audience.</span></p></li><li><p><span>Comfortable presenting to senior stakeholders and managing client relationships directly.</span></p></li><li><p><span>Able to adapt your approach across different business cultures. The JAPAC region spans markets with very different expectations around communication, hierarchy, and directness, and working effectively across that range is part of the job.</span></p></li><li><p><span>Additional language proficiency is a strong advantage, particularly Mandarin, Japanese, Hindi, or Thai.</span></p></li></ul><p></p><p><b>Bonus Areas</b></p><ul><li><p><span>Detection engineering experience in traditional enterprise environments: on-premises Active Directory, Windows endpoint telemetry, and classic Wintel infrastructure.</span></p></li><li><p><span>Cloud incident response experience (AWS, Azure, or M365).</span></p></li><li><p><span>Kubernetes and container security.</span></p></li><li><p><span>CI/CD pipeline security and DevSecOps practices.</span></p></li></ul><p></p><p><b>Experience and Background: </b></p><p><span>We care about what you know and what you can do, not the specific path you took to get here. Strong candidates will have built real depth in cloud platforms and security over time — whether through years in dedicated security roles, a background in cloud engineering or DevOps that shifted toward security, or any other route that got them to the same place. What matters is that the knowledge is solid and the skills are demonstrable.</span></p><p></p><p><span>Cloud security certifications are a useful signal of hands-on platform knowledge. AWS Certified Security Specialty, AZ-500, and similar practitioner-level credentials are relevant. Broad governance and management certifications (CISSP, CISA, CISM, and similar) are not a focus for this role.</span></p><p></p><p><b>Why This Role: </b></p><p><span>The work is technically demanding, the clients are high-profile, and the team is sharp. You'll have room to develop your own tooling and methodology contributions and do work that has real impact at some of the region's most security-conscious organisations. It's a team that takes the work seriously without making a virtue of burning people out.</span></p><p></p><p><span>LI-JC2</span></p><p><span>LI-Remote</span></p><p></p><p><b>Benefits of Working at CrowdStrike: </b></p><ul><li><p>Market leader in compensation and equity awards</p></li><li><p>Comprehensive physical and mental wellness programs</p></li><li><p>Competitive vacation and holidays for recharge</p></li><li><p>Paid parental and adoption leaves</p></li><li><p>Professional development opportunities for all employees regardless of level or role</p></li><li><p>Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections</p></li><li><p>Vibrant office culture with world class amenities</p></li><li><p>Great Place to Work Certified™ across the globe </p></li></ul><p></p><p>CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.</p><p></p><p>CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.</p><p></p><p>If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at <a href="mailto:recruiting@crowdstrike.com" target="_blank" rel="noopener noreferrer"><span style="overflow-wrap: break-word; display: inline; text-decoration: inherit; hyphens: auto;">recruiting@crowdstrike.com</span></a> for further assistance.</p>