Crowe
Your Journey At Crowe Starts Here:
At Crowe, you can build a meaningful and rewarding career. With real flexibility to balance work with life moments, you're trusted to deliver results and make an impact. We embrace you for who you are, care for your well-being, and nurture your career. Everyone has equitable access to opportunities for career growth and leadership. Over our 80-year history, delivering excellent service through innovation has been a core part of our DNA across our audit, tax, and consulting groups. That's why we continuously invest in innovative ideas, such as AI-enabled insights and technology-powered solutions, to enhance our services. Join us at Crowe and embark on a career where you can help shape the future of our industry. Job Description:
The Incident Response role in Crowe's Consulting Practice, is a position designed for individuals eager to broaden their career in cybersecurity, specifically within the realm of incident response (IR). This role offers a unique opportunity to grow by engaging in the repeatable aspects of incident response, such as forensic collection, console/log review, and basic threat hunting. The successful candidate will work on an IR team to support and enhance our client's cybersecurity posture, ensuring the protection of client data and systems under fire. This position is ideal for those who are passionate about cybersecurity and are looking to develop their skills in a dynamic and supportive environment. As part of the Incident Response (IR) team, your responsibilities will include coordinating with team members to effectively execute and collaborate on incident response engagements. You will review and analyze security events and incidents to identify potential threats and vulnerabilities, as well as assist in the collection of digital forensic evidence to support ongoing investigations. Your role will involve conducting proactive threat hunting activities using Endpoint Detection and Response (EDR) and Security Information and Event Management (SIEM) tools. Additionally, you will be responsible for reviewing and generating detailed reports based on client-provided metrics and investigation findings. When necessary, you will also participate in on-site incident response engagements, working closely with other on-site personnel to address and mitigate security incidents in real-time. Requirements:
Excellent problem-solving and analytical skills, with keen attention to detail. Strong communication and interpersonal skills to effectively collaborate with team members and clients. Proven adaptability and a strong drive to learn and master new technologies. Ability to maintain focus and composure in high-stress situations. Willingness to travel up to 5% of the time or more, as required. Commitment to continually expanding skillsets and knowledge, with a proven track record of doing so. Experience in troubleshooting technical issues or investigating security incidents. Understanding of networking, cybersecurity, and IT concepts. Experience responding to security incidents in a professional setting. Relevant certifications such as CompTIA Network+, Linux+, Security+, CySA+, GIAC Security Essentials, Microsoft Security Operations Analyst, or AWS Certified Security Specialty. Experience working in a Security Operations Center (SOC) environment. Familiarity with major cloud platforms such as AWS, O365, and Google Workspace. Experience with EDR tools like SentinelOne, CrowdStrike, Carbon Black, or Microsoft Defender for Endpoint. Proficiency in utilizing SIEM or log aggregation tools such as Splunk, Elastic, or Microsoft Sentinel. Understanding of basic scripting and command interpreter usage (e.g., Bash, PowerShell, Python). Education:
Currently pursuing a bachelor's or master's degree in: Computer Science Information Technology Management Information Systems Cybersecurity, or equivalent educational experience (such as a bachelor's degree in a related field, or relevant certifications). We expect the candidate to uphold Crowe's values of Care, Trust, Courage, and Stewardship. These values define who we are. We expect all of our people to act ethically and with integrity at all times. The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Crowe, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $62,000 - $100,000 per year. Crowe LLP provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
At Crowe, you can build a meaningful and rewarding career. With real flexibility to balance work with life moments, you're trusted to deliver results and make an impact. We embrace you for who you are, care for your well-being, and nurture your career. Everyone has equitable access to opportunities for career growth and leadership. Over our 80-year history, delivering excellent service through innovation has been a core part of our DNA across our audit, tax, and consulting groups. That's why we continuously invest in innovative ideas, such as AI-enabled insights and technology-powered solutions, to enhance our services. Join us at Crowe and embark on a career where you can help shape the future of our industry. Job Description:
The Incident Response role in Crowe's Consulting Practice, is a position designed for individuals eager to broaden their career in cybersecurity, specifically within the realm of incident response (IR). This role offers a unique opportunity to grow by engaging in the repeatable aspects of incident response, such as forensic collection, console/log review, and basic threat hunting. The successful candidate will work on an IR team to support and enhance our client's cybersecurity posture, ensuring the protection of client data and systems under fire. This position is ideal for those who are passionate about cybersecurity and are looking to develop their skills in a dynamic and supportive environment. As part of the Incident Response (IR) team, your responsibilities will include coordinating with team members to effectively execute and collaborate on incident response engagements. You will review and analyze security events and incidents to identify potential threats and vulnerabilities, as well as assist in the collection of digital forensic evidence to support ongoing investigations. Your role will involve conducting proactive threat hunting activities using Endpoint Detection and Response (EDR) and Security Information and Event Management (SIEM) tools. Additionally, you will be responsible for reviewing and generating detailed reports based on client-provided metrics and investigation findings. When necessary, you will also participate in on-site incident response engagements, working closely with other on-site personnel to address and mitigate security incidents in real-time. Requirements:
Excellent problem-solving and analytical skills, with keen attention to detail. Strong communication and interpersonal skills to effectively collaborate with team members and clients. Proven adaptability and a strong drive to learn and master new technologies. Ability to maintain focus and composure in high-stress situations. Willingness to travel up to 5% of the time or more, as required. Commitment to continually expanding skillsets and knowledge, with a proven track record of doing so. Experience in troubleshooting technical issues or investigating security incidents. Understanding of networking, cybersecurity, and IT concepts. Experience responding to security incidents in a professional setting. Relevant certifications such as CompTIA Network+, Linux+, Security+, CySA+, GIAC Security Essentials, Microsoft Security Operations Analyst, or AWS Certified Security Specialty. Experience working in a Security Operations Center (SOC) environment. Familiarity with major cloud platforms such as AWS, O365, and Google Workspace. Experience with EDR tools like SentinelOne, CrowdStrike, Carbon Black, or Microsoft Defender for Endpoint. Proficiency in utilizing SIEM or log aggregation tools such as Splunk, Elastic, or Microsoft Sentinel. Understanding of basic scripting and command interpreter usage (e.g., Bash, PowerShell, Python). Education:
Currently pursuing a bachelor's or master's degree in: Computer Science Information Technology Management Information Systems Cybersecurity, or equivalent educational experience (such as a bachelor's degree in a related field, or relevant certifications). We expect the candidate to uphold Crowe's values of Care, Trust, Courage, and Stewardship. These values define who we are. We expect all of our people to act ethically and with integrity at all times. The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Crowe, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $62,000 - $100,000 per year. Crowe LLP provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.