Senior Software Engineer - Tool Development and Integration

We are looking for an enthusiastic Software Engineer to support with internal Tool Development and Integration as part of our Cyber & Data Resilience practice. 

Day-to-Day Responsibilities:

Tool Development & Integration

• Design, develop, and maintain internal tools using Python and C# to support incident response workflows.
• Integrate tools with EDR platforms (e.g., CrowdStrike, SentinelOne) for automated data collection, threat hunting, and remediation.
• Build APIs and services that facilitate seamless communication between internal systems and third-party security platforms.

Forensic Collection & Automation

• Develop modules for automated forensic artifact collection (e.g., memory dumps, file system snapshots, process lists).
• Ensure tools can operate reliably across diverse environments and endpoints.
• Implement robust error handling and logging mechanisms for traceability and debugging.

Incident Response Support

• Enable ChatOps-style interaction with tools via platforms like Slack or Microsoft Teams to support real-time collaboration during incidents.
• Create and maintain playbooks and scripts that can be triggered via chat commands or automation pipelines.

Monitoring & Error Tracking

• Implement telemetry and monitoring for internal tools to track usage, performance, and failures.
• Build dashboards or alerting mechanisms to surface issues proactively to the IR team.

DevOps & CI/CD

• Collaborate with DevOps teams to deploy and manage tools using CI/CD pipelines and infrastructure-as-code practices.
• Ensure tools are containerized and scalable using technologies like Docker and Kubernetes (if applicable).

Documentation & Collaboration

• Maintain clear and comprehensive documentation for tools, APIs, and integration workflows.
• Work closely with incident responders, threat hunters, and security engineers to gather requirements and iterate on tool features.

Essential Traits:

• 3–5 years of experience in software development with Python and C#.
• Hands-on experience integrating with EDR platforms (CrowdStrike, SentinelOne, etc.).
• Familiarity with incident response processes, forensic data collection, and security operations.
• Experience with DevOps tools (e.g., GitLab CI/CD, Jenkins, Terraform, Docker).
• Strong understanding of REST APIs, webhooks, and secure coding practices.
• Excellent problem-solving skills and ability to work in high-pressure environments

About Kroll

Join the global leader in risk and financial advisory solutions—Kroll. With a nearly century-long legacy, we blend trusted expertise with cutting-edge technology to navigate and redefine industry complexities. As a part of One Team, One Kroll, you'll contribute to a collaborative and empowering environment, propelling your career to new heights. Ready to build, protect, restore and maximize our clients’ value? Your journey begins with Kroll.

In order to be considered for a position, you must formally apply via careers.kroll.com.

We are proud to be an equal opportunity employer and will consider all qualified applicants regardless of gender, gender identity, race, religion, color, nationality, ethnic origin, sexual orientation, marital status, veteran status, age or disability.

The current salary range for this position is $60,000 to $120,000

#LI-CN1

#LI-Remote