Sr. Security Researcher (Remote)

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn't changed - we're here to stop breaches, and we've redefined modern security with the world's most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We're also a mission-driven company. We cultivate an inclusive culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We're always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role:

CrowdStrike Intelligence is seeking a motivated security researcher with excellent technical skills to join the Advanced Research Team (ART). Security Researchers within ART will be expected to apply a broad set of skills to support the CrowdStrike Intelligence mission. ART is responsible for researching and publishing on topics related to information security, providing technical expertise to other teams within CrowdStrike Intelligence, developing tools to support analysts in their day-to-day duties, and collecting technical artifacts about adversary activity.

Aside from working on longer-term research and collection projects, ART security researchers will be required to provide unique solutions on short notice to serve ad-hoc needs by other teams within CrowdStrike Intelligence.

What you will do:

• Perform vulnerability research on a wide variety of targets, e.g.
  • Analyze vendor patches to identify vulnerabilities and develop proof-of-concept exploits
  • Review evidence of malicious activities (e.g. log files, payloads) to confirm exploitation of 0-day and n-day vulnerabilities, identify root causes and reproduce exploits
  • Identify new vulnerabilities in applications or products
• Develop automated solutions for collecting, processing and analyzing data at scale, e.g.
  • vendor patch processing and analysis
  • exploit identification in large file collections
  • identification of malicious infrastructure

• Collaborate across other teams at CrowdStrike Intelligence and beyond to
  • Reproduce emerging vulnerabilities and provide actionable technical information
  • Inform on information security topics
  • Satisfy unique technical collection requirements
• Publish research results on the CrowdStrike blog or at conferences

What You'll Need:

• Proficiency in English, both written and spoken
• Strong information security background with 4+ years experience
• Vulnerability research and exploit development experience
• Reverse engineering experience
• Solid understanding of Microsoft Windows and Linux operating system internals
• Solid software development experience (Python preferred)
• Excellent problem solving skills, creativity and strong analytical skills to investigate, assess, validate, and think outside the box
• Ability to work independently, with a customer-oriented mindset
• Ability to work remotely, in a collaborative team environment

Bonus Points:

• Successful participation in CTF competitions
• Experience with mobile platforms and operating systems (e.g. Android, iOS)
• Experience with macOS
• Experience with the Go or Rust programming languages
• Threat Intelligence background

Education

• M.A./M.Sc. or equivalent professional experience in Information Security/Computer Science/Computer Engineering, or a related field

#LI-Remote

#LI-EV1

#LI-JP2

Benefits of Working at CrowdStrike:

• Remote-friendly and flexible work culture
• Market leader in compensation and equity awards
• Comprehensive physical and mental wellness programs
• Competitive vacation and holidays for recharge
• Paid parental and adoption leaves
• Professional development opportunities for all employees regardless of level or role
• Employee Resource Groups, geographic neighbourhood groups and volunteer opportunities to build connections
• Vibrant office culture with world class amenities
• Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity and affirmative action employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements. If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at [email protected] for further assistance.