- Company: Kroll
- Location: United States
- Salary: $150,000–$200,000/yr
Kroll at a glance
kroll.comSEC filings mentioning "Kroll": 10,000+ · SIC industry: Services-Detective, Guard & Armored Car Services — search EDGAR
Most recent 8-K (material company event) filed: Jul 22, 2004 — view filing
3,068 employees covered under a retirement plan (2023 filing) — via DOL Form 5500 / EFAST2
Registered as a global legal entity (LEI 254900R3R9C2JJ8ZQ036, US) — via GLEIF
Kroll (kroll.com) is a risk and advisory firm with a cyber practice. Company content highlights Cyber Strategy and Advisory experts, which aligns with a senior cloud security engineering focus.
Kroll is seeking a Senior Manager – Cloud Security Engineer (CrowdStrike) to launch and lead its Falcon Cloud Security deployment practice for clients across the United States. This is a hands-on, player-coach role for an engineer who wants to architect cloud-native defenses while mentoring the next generation of consultants.
About the Role
Within Kroll's Cyber & Data Resilience capability, you will build and run the practice responsible for deploying, configuring, integrating, and tuning CrowdStrike Falcon Cloud Security end-to-end inside each client's Falcon tenant. Falcon Cloud Security is a unified Cloud-Native Application Protection Platform (CNAPP) covering CSPM, CWP, CIEM, KSPM, ASPM, DSPM, IaC scanning, and container and Kubernetes runtime protection across AWS, Azure, and Google Cloud. Reporting into the Engineered Defense / Tech Transformation leadership team, you will personally drive engagement delivery while guiding junior consultants and collaborating with CrowdStrike account teams on scoping. The position is full-time and based in the United States.
Key Responsibilities
- Onboard client AWS, Azure, and GCP environments to Falcon Cloud Security at scale using CloudFormation StackSets, Bicep / Entra ID integrations, and GCP service account patterns.
- Deploy the Falcon sensor across VMs, container hosts, and Kubernetes nodes, and stand up agentless snapshot scanning to close coverage gaps.
- Roll out the Kubernetes Admission Controller, container image registry scanning, IaC scanning, and serverless protection into client CI/CD pipelines.
- Configure CSPM, CWP, KSPM, ASPM, DSPM, and CIEM policies, including IOM and IOA rules, compliance frameworks (CIS, NIST, PCI-DSS, HIPAA, SOC 2), and ExPRT.AI risk prioritization.
- Ingest cloud telemetry into Falcon Next-Gen SIEM (LogScale) and build detection content mapped to the MITRE ATT&CK Cloud Matrix.
- Develop Falcon Fusion SOAR playbooks and integrate with Falcon Identity Protection, Insight (EDR), AIDR, and Charlotte AI workflows.
- Tune IOM/IOA policies and validate detection coverage through controlled adversary emulation.
Qualifications
- Deep hands-on expertise with CrowdStrike Falcon Cloud Security and the broader Falcon platform.
- Strong working knowledge of AWS, Azure, and GCP architecture, identity, and logging.
- Proven experience with Kubernetes, container security, IaC, and CI/CD integrations.
- Detection engineering skills, including CQL and MITRE ATT&CK-aligned content development.
- Demonstrated ability to lead delivery while mentoring consultants and partnering with stakeholders.
About Kroll
Kroll delivers reactive, advisory, transformation, and managed security services that help organizations worldwide advance their cyber and data resilience. Through a strategic multi-year partnership with CrowdStrike, Kroll pairs decades of investigative expertise with an AI-native platform to redefine managed detection and response.
How to Apply
To apply, complete your application directly on this page, or you'll be redirected to the employer's application platform to finish submitting there.
Apply now
Takes about a minute — like Indeed Apply. The employer sees you in their Candidates list.
To apply for this job please visit himalayas.app.
Explore Kroll online
What people say about Kroll
- Ask HN: Who is hiring? (August 2015)
- The great Moldovan bank robbery
- Ripple fined for acting as a money services business without registration
- Consensus in Bitcoin: One system, many models
Recent news
- Kroll Conversations: Meet the Cyber Strategy and Advisory Experts - Kroll
- Charles Conwell set for return vs. Paul Kroll on August 1 - ringmagazine.com
- Tap In A Hundred Percent to Nick Kroll’s New Comedy Series - Netflix
- Banner Health Patient Privacy Class Action Settlement - Claim Depot
- Justin Kroll appointed assistant professor of music - Luther College
Aggregated from public discussions and news; opinions are the authors’ own.
Working in United States
The role is listed for the United States, a federal republic of 50 states with its capital in Washington, D.C. Exact office or hybrid site is not specified in the listing data.
🇺🇸 Relocation safety for US: Exercise Normal Caution — via Warnely, CC BY 4.0
National unemployment rate in US: 4.2% — via World Bank
Private-sector wage growth (year over year): 3.3% — via FRED
National quits rate: 1.9% — via FRED (BLS JOLTS)
Weekly initial unemployment claims: 215,000 — via FRED
GDP per capita in US: $90,027 — via World Bank
Consumer price inflation in US: 2.9% (annual) — via World Bank
Real GDP growth in US: 2.2% (annual) — via World Bank
Average hours worked per year in US: 1,800 — via OECD
Build the skills for this role
Prioritize CrowdStrike (EDR/XDR), cloud security on major platforms (IAM, logging, network controls), detection engineering, and incident response basics. Leadership skills matter for a senior manager path: mentoring, prioritization, and clear risk communication. No specific cert list was provided for this family.
- Walk through a cloud hardening or CrowdStrike deployment you led end to end.
- Explain how you triage high-severity detections and when you escalate to IR.
- Describe managing engineers under client or audit pressure.
- Be ready to discuss zero-trust, least privilege, and multi-account cloud design.
Strong fit if you combine hands-on cloud security and CrowdStrike depth with senior leadership. Weaker fit if you prefer pure IC coding without advisory or managerial scope. Location is U.S.-based and not marked remote in the listing data.
Job details above are provided by the employer/source. The sections on this page are compiled from public data sources with AI assistance.
Accommodations: if you need a workplace accommodation to apply for or perform this job, see ADA.gov or EEOC.gov for guidance on your rights and how to request one.
Listing facts
- Role Senior Manager – Cloud Security Engineer (CrowdStrike)
- Employer Kroll
- Location United States
- Type Full Time
- Pay (from listing) $150,000–$200,000/yr
- Posted June 21, 2026
- Apply by 2026-07-21
- Country context US
- Overview Full original description on this page (427 words; rewritten for clarity, not a teaser paste)
Facts above come from this job record on Get A Job.AI — not copied from third-party review sites.
Public discussions & open sources
Attributed public threads and profiles — not employee reviews or star ratings.
- Hacker News — Ask HN: Who is hiring? (August 2015)
- Hacker News — The great Moldovan bank robbery
- Hacker News — Ripple fined for acting as a money services business without registration
- Hacker News — Consensus in Bitcoin: One system, many models
Cached public sources (Hacker News, Dev.to, GitHub, etc.).
Employer website
Explore related openings
2 other opening(s) at Kroll on Get A Job.AI
Research this employer
Pull public facts we already cached for this company (Wikipedia, news, discussions). We never invent Glassdoor-style ratings.
Open interview kit (print-friendly)
Get email alerts for similar jobs
Keep exploring on Get A Job.ai
Not quite the right fit? Your next opportunity is a click away.
- Browse all jobs
- More jobs by category
- Remote jobs you can do from anywhere
- Research typical pay for this role
- Set a job alert so new matches reach you first
- Upload your resume to apply faster
- Register now to access our free AI resume builder
Hiring instead? Post a job and reach candidates searching right now.
