Detection Focused Senior Cloud Security Consultant - JAPAC (Remote)

About the role

CrowdStrike is looking for a technically strong, self-directed cloud security professional to join our Professional Services team in the JAPAC region. This is a hands-on role for someone with genuine curiosity about cloud attack techniques and a drive to build the detection and defensive capability to counter them. You'll work with complex, high-profile organisations across the region, helping them understand where they're exposed, sharpen their detection capabilities, and close the gaps that adversaries look for. The work demands both technical depth and client credibility, so you'll need to be effective at both. What You'll Do: Conduct cloud security assessments across a range of environments, focusing primarily on AWS and Azure: reviewing configurations, identity architectures, network exposure, and attack paths to surface the risks that actually matter. Design and build detection logic and alerting for cloud control plane activity, identity-based threats, and misconfiguration-driven exposure across cloud-native and third-party security platforms. Write automation to speed up assessment work, extract and correlate data across large datasets, and turn repeatable analysis into something the team can use again. Partner with our Red Team during Purple Team exercises: testing customer detection and response capabilities and translating the gaps into concrete recommendations. Collaborate with internal delivery teams to help turn assessment findings into detection content that's ready to deploy. Produce clear, high-quality reports and presentations for technical and executive audiences. Run client engagements from scoping through delivery, keeping stakeholders well-informed throughout. Help push our service offerings forward through methodology development, tooling contributions, and public-facing thought leadership.

Requirements

• Cloud Platforms Strong practical experience with AWS and Azure, including identity, compute, networking, storage, serverless, and logging and monitoring services.
• A solid grasp of cloud architecture patterns and where security assumptions tend to break down in practice.
• GCP experience is a plus, but not a requirement.
• Detection Engineering Experience building detection content that works: writing queries, developing alerting logic, and cutting through noise in cloud-native and third-party SIEM/XDR environments.
• A working knowledge of how threat actors operate in cloud environments, and the ability to translate that into detections that actually fire on the right things.
• Cloud Security Configuration Analysis Experience tracing how misconfigurations chain together into realistic attack paths - analysis that tells a coherent story rather than producing a list of isolated findings.
• Familiarity with common cloud attack patterns: privilege escalation, lateral movement, persistence, and data exfiltration.
• Automation and Tooling Solid scripting ability in Python or equivalent, comfortable building tools to automate assessment tasks, work with large datasets, and extend existing frameworks.
• Experience writing queries across platforms such as KQL, SPL, or cloud-native query engines.
• Comfortable using AI tooling to sharpen and accelerate their work - whether for code generation, data analysis, query development, or documentation - with enough critical judgement to know when the output needs work.
• Communication Strong written and verbal communication in English. You can write a finding that prompts a CISO to act and explain a detection gap to an engineer without losing either audience.
• Comfortable presenting to senior stakeholders and managing client relationships directly.
• Able to adapt your approach across different business cultures. The JAPAC region spans markets with very different expectations around communication, hierarchy, and directness, and working effectively across that range is part of the job.
• Additional language proficiency is a strong advantage, particularly Mandarin, Japanese, Hindi, or Thai.
• Bonus Areas Detection engineering experience in traditional enterprise environments: on-premises Active Direct

Additional Information

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn't changed - we're here to stop breaches, and we've redefined modern security with the world's most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We're also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We're always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at CrowdStrike? Share your experience