Principal Security Engineer

Principal Security Engineer

We are looking for a talented Principal Security Engineer to join our team at Fortive. In this role, you will design, implement, and enhance our security operations framework. You will be a key player in protecting our data and ensuring a robust security posture.

About the Role

This is a permanent position where you will be responsible for leading the architectural design and lifecycle management of our security systems. Your expertise in the CrowdStrike Falcon platform will be essential in creating a unified and automated defense strategy.

What You'll Do

• Platform Architecture: Lead the design and management of the Falcon ecosystem, ensuring integration between EDR agents, SIEM ingestion, and SOAR automation.
• CrowdStrike EDR: Engage extensively with EDR, continuously tune policies, and respond in real-time while building custom Indicators of Attack (IOA).
• Next-Gen SIEM & Log Management: Design and optimize CrowdStrike Next-Gen SIEM, creating custom parsers, complex queries, and dashboards for real-time visibility.
• Automation & Orchestration: Build and maintain SOAR playbooks to automate tasks, reduce response times, and streamline incident management.
• MITRE ATT&CK Mapping: Map Falcon detections to adversary tactics to understand the scope of intrusions.
• Data Security Integration: Collaborate with stakeholders to implement DLP and DSPM strategies, ensuring sensitive data is protected.
• Cloud Technology: Understand core cloud services and their integration with our security systems.
• Threat Modeling: Conduct threat modeling to identify gaps and recommend CrowdStrike modules or third-party solutions.
• Policy Governance: Define and enforce security standards across our global endpoint fleet.

What We're Looking For

• Education: Bachelor’s degree in Business, Technical Communication, Information Technology, or related field.
• Certifications: CISSP, CISM, or equivalent certification preferred; CCFA (Falcon Administrator) is a plus; some cloud security certification is also good to have.
• Experience: 15+ years in Cybersecurity, with at least 5+ years focused on EDR, Next-Gen SIEM, and SOAR.
• Skills: Expert-level knowledge of CrowdStrike Falcon Insight, Next-Gen SIEM, and Falcon Fusion. Proficient in scripting languages like Python, PowerShell, and JavaScript.
• Communication: Excellent written and verbal skills, with proficiency in documentation tools like Confluence and MS Office.
• Agility: Familiarity with Agile methodologies and the ability to manage multiple priorities in a fast-paced environment.

Nice to Have

• Some understanding of Data Loss Prevention (DLP) and Data Security Posture Management (DSPM).

What We Offer

• Salary: Competitive salary based on experience.
• Benefits: Comprehensive benefits package, including health insurance, retirement plans, and paid time off.
• Culture: Join a diverse team that values inclusion and growth, with opportunities for learning and advancement.

About Us

Fortive is a global technology innovator committed to making the world stronger, safer, and smarter. We focus on transforming industries through software-powered solutions and data-driven intelligence. Our team of 18,000 is dedicated to solving challenges on a global scale, and we foster a culture of continuous improvement and collaboration.

Fortive Corporation and all Fortive Companies are equal opportunity employers. We value diversity and encourage applications from all qualified individuals. If you need assistance during the application process due to a disability, please reach out to us at applyassistance@fortive.com.