Endpoint Security Engineer Lead (CrowdStrike) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Leidos · 1 month ago

Endpoint Security Engineer Lead (CrowdStrike)

positionArlington, VA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$105K/yr - $189K/yr
date8+ years exp

Leidos is seeking a lead Endpoint Security Engineer for a strategic Cybersecurity Task Order. The role involves providing technical leadership for CrowdStrike implementations, overseeing deployment and incident response, and mentoring junior engineers while ensuring compliance with security standards.

ComputerGovernmentInformation ServicesInformation TechnologyNational SecuritySoftware
check
H1B Sponsor Likelynote

Responsibilities

Serve as the primary technical authority for CrowdStrike, guiding the team on best practices and technical standards
Oversee the deployment and maintenance of CrowdStrike agents to ensure full coverage across all endpoints
Lead and participate in the investigation and response to security incidents detected by CrowdStrike
Perform threat hunting, conduct malware analysis, and help refine detection logic in collaboration with the SOC
Integrate the CrowdStrike platform with other security tools, such as SIEM/SOAR platforms, using scripting languages like Python and PowerShell
Mentor and guide junior engineers on technical standards, processes, and procedures
Ensure the endpoint security strategy aligns with enterprise goals and that all solutions meet regulatory and compliance standards
Identify and implement opportunities for automation to streamline security operations
Maintain up-to-date documentation, standard operating procedures (SOPs), and knowledge base articles
Manage multiple assignments, changing priorities, and work independently with little oversight
Work closely with senior engineers, other team members and application owners to solve technical problems at the network, system and application levels
Conduct periodic architectural reviews of installed sensors to assess effectiveness and propose optimal installation alternatives as required
Deploy CrowdStrike Falcon Endpoint Detection and Response (EDR) detection agent up to 4K devices
Reduce risk by ensuring coverage of malware detection for in-scope CrowdStrike EDR Agent capable devices
Optimization of EDR solution, including refinement data produced, development of automated workflows or playbooks, and integration of the EDR data with Enterprise solutions, including SIEM solutions
Configuring CrowdStrike cloud-hosted SaaS Solution, to manage policies, control reporting data, manage, and respond to threats
Experience in backend solution, day to day system admin and monitoring, file system management and disk management and creation of shell scripts for the automation of tasks and the extraction of logs
Provide follow-up reports (technical findings, feedback, resolution steps taken) for Root Cause analysis, engineering technical assessment and process improvement initiatives

Qualification

CrowdStrike FalconEndpoint securityIncident responseScripting languagesSecurity frameworksSIEM integrationsOperating systemsAnalytical skillsProblem-solvingCommunication skillsSelf-motivationTeam leadershipDocumentation

Required

BS degree in Science, Technology, Engineering or related field and 8-10 years of prior relevant experience with a focus on cybersecurity OR Masters with 6-8 years of prior relevant experience
Experience leading cross-functional security initiatives and managing small teams or projects
Extensive, hands-on experience with the CrowdStrike Falcon platform, including multiple modules (e.g., EDR, FIM, Identity Protection, Data Protection)
Expertise in endpoint security concepts and incident response processes
Proficiency in scripting languages like Python, PowerShell, or Bash for automation and custom response actions
Strong knowledge of security frameworks like NIST or MITRE ATT&CK
Experience with SIEM integrations and threat analysis
Solid understanding of operating systems (Windows, Linux, macOS)
Superior attention to detail with excellent written and verbal communication skills
Excellent problem solving, research, and follow-up skills
Self-motivation and ability to work independently
Ability to obtain an Entry of Duty (EOD) Public Trust
Candidate must, at a minimum, meet one of these certifications: CrowdStrike certifications (e.g., CCFR, CCFP)

Preferred

Experience automating management tasks with Ansible, Puppet, or Chef
Experience working with SIEM tools such as Splunk to ingest, normalize, store, and maintain data from endpoint, network, and application sourcetypes
Experience working in AWS and Azure
Experience with Wiz, Sepio, TVM and Nucleus is a plus

Company

Leidos

twittertwittertwitter
Glassdoor3.9
company-logo
Leidos is a Fortune 500® innovation company rapidly addressing the world’s most vexing challenges in national security and health.
dateFounded in 1969
location
Reston, Virginia, USA
people-size10001+ employees
web-link
https://www.leidos.com/

H1B Sponsorship

Leidos has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (65)
2024 (58)
2023 (77)
2022 (65)
2021 (56)
2020 (89)

Funding

Current Stage
Public Company
Total Funding
unknown
2025-02-20Post Ipo Debt
2013-09-17IPO

Leadership Team

leader-logo
James Carlini
Chief Technology Officer
linkedin
leader-logo
Theodore Tanner
Chief Technology Officer
linkedin

Recent News

Fortune
Fortune 500 Power Moves: Which executives gained and lost power this week
2025-12-20
MarketScreener
Leidos Names Theodore Tanner Chief Technology Officer
2025-12-16
Benzinga.com
Citigroup, Leidos Holdings And More On CNBC's 'Final Trades'
2025-12-16
Company data provided by crunchbase