As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.
About the Role:
The CrowdStrike Intelligence team is looking for a motivated researcher with experience in the information security domain and software development skills to work on our dedicated Intelligence Automation team, building processing pipelines, information storage systems, and presentation layers in support of malware analysis pipelines, including static and dynamic sandboxing environments.
The collection, processing, and exploration of malware samples and other information at a large scale is at the core of the Intelligence mission at CrowdStrike. The Intelligence Automation team is responsible for prototyping, building, and operating the systems that make up our Intelligence pipeline, and we'd like you to join us!
This position is at the intersection of threat analysis and software development. It serves an important role in increasing our visibility into the global threat landscape, and contributes to the continuous tracking of more than a hundred adversary groups.
You will mainly use Go and Python to maintain and improve our world-class malware processing pipeline technology as well as downstream data integration and processing systems in a fast-paced Intelligence environment. In this environment, requirements sometimes shift rapidly, and projects can live anything from weeks to years depending on changes in the surrounding ecosystem. You will be responsible for all aspects of the software you design, from documentation to deployment to production, and will interact regularly with your internal customers to gather requirements, solicit feedback, and validate your results. When encountering problems or bugs you will use your debugging skills, including binary reverse-engineering, to determine the root cause and mitigate the issue.
As a remote employee on a team distributed across various time zones, you will not have direct access to all of your co-workers for the entire workday, so the ability to work unsupervised, communicate asynchronously, and take the initiative in maintaining lines of communication is important. In addition, we are looking for someone who would like to be part of a team who are passionate about their work and go the extra mile to exceed expectations. We love enthusiastic individuals who bring a positive attitude to their work and really care about what they produce for our internal customers.
What You’ll Do
Integrate into the Intelligence team and gather requirements from Intelligence Analysts and Technical Analysts as internal customers
Develop and maintain a large-scale malware analysis pipeline
Develop detection content for the analysis pipeline to extend coverage of new threats in collaboration with various analyst teams
Autonomously make choices about implementation details, as well as the right balance between rapid development, scalability, and performance
Continuously improve an extensive existing Go/Python codebase
What You’ll Need
Bachelor’s degree in Computer Science or equivalent academic/work experience
Proficiency in at least one of these languages: Python, Go
Experience developing production-grade software
Knowledge of docker and container orchestration
Knowledge of malware sandboxing/analysis technologies and sandbox evasion techniques
Ability to communicate technical detail in a simple, top-down manner to both, management and customers
Ability to independently make sound, justifiable decisions and take action
Ability to plan, organize and prioritize work independently and meet deadlines
Ability to work on a geographically distributed and diverse team
Bonus Points
Familiarity with the AWS cloud ecosystem (e.g. EC2, S3, VPC, ECS)
Knowledge of Windows OS internals and virtualization with QEMU
Experience in binary reverse engineering
Experience creating scalable and well-documented HTTP APIs
Offensive information security experience, e.g. from capture-the-flag (CTF) competition
Experience with Ansible and large-scale VM management
#LI-Remote
#LI-EV1
Benefits of Working at CrowdStrike:
Remote-friendly and flexible work culture
Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe
CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.
CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.
If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.