Facebook pixel

Senior Security Researcher (Remote)
Posted on 4/12/2022
United States
Experience Level
Desired Skills
  • Produce high-quality threat intelligence reporting for all levels of readership, including actionable mitigation and detection guidance
  • Experience in technical writing
  • Ability to brief complex technical analysis results to different audiences
  • Collaborate across teams to inform various functions within CrowdStrike Intelligence and beyond about activity of interest, to coordinate adversary and campaign tracking, and to provide support to teams developing exploit mitigation strategies and products
  • Conduct briefings as needed for a variety of levels of customers as requested (via either phone, video conference, webcast, in-person briefing, or industry conference)
  • At least five years of experience in static and dynamic malicious code reverse engineering and exploit and vulnerability analysis
  • Proficiency in exploitation techniques that are commonly seen in exploits for userspace and kernel-level vulnerabilities
  • Knowledge of common network service exploitation techniques
  • Solid understanding of at least two operating system platforms, including Microsoft Windows
  • Familiarity with standard web-based exploitation vectors
  • Collaborative mindset, strong team player who enables others
  • Profound knowledge of reverse engineering tools (disassemblers, decompilers, debuggers) and processes (unpacking malware, reconstructing code logic, etc)
  • Knowledge of programming and scripting languages, in particular Python
  • Ability to express complex technical and non-technical concepts in verbal and graphical products
  • Excellent writing skills are mandatory
  • MA/MS or equivalent experience in Computer Science, or a related field
  • Implement tracking systems that inform cross-team adversary tracking efforts based on observed exploitation behavior
  • Improve and maintain capabilities for detecting exploits, malicious payloads and other potential attack vectors using existing data sources
  • Identify opportunities for increasing the visibility of threats, specifically exploits, using new data sources
  • Maintain a detailed understanding of the inner functioning of relevant exploits through reverse engineering
  • Develop tools to assist with the automation of exploit analysis tasks by extending static and dynamic analysis frameworks
  • Create a classification framework that aids attribution of intrusion activity based on vulnerabilities used and characteristics in observed exploits
  • Contribute to active mitigation efforts with technical expertise
  • Develop host-based and network-based signatures suited for large-scale hunting, detection, and prevention of identified exploits
Desired Qualifications
  • Experience in attribution and intelligence analysis is a plus
  • A background in intelligence writing is a plus
  • Experience in writing Snort and YARA signatures is a plus

1,001-5,000 employees

Enterprise Security Platform
Company Overview
CrowdStrike's mission is to stop breaches and to provide safety and security to some of the world’s largest, most influential companies and, by extension, the billions of people around the world who use their services. CrowdStrike has redefined security with the world’s most advanced cloud-native platform that protects and enables the people, processes and technologies that drive modern enterprise.
  • Competitive Employee Stock Purchase Plan
  • Remote-friendly culture
  • Market leader in compensation and equity awards
  • Competitive vacation and flexible working arrangements
  • Comprehensive health benefits + 401k plan
  • Paid Parental Leave, including adoption
  • Wellness programs
  • Professional development and mentorship opportunities
  • Open offices have stocked kitchens, coffee, soda and treats
Company Values
  • Autonomy
  • Flexibility
  • Trust
  • Fostering a diverse, inclusive and supportive work environment