Sr. Security Researcher - NG SIEM Content Threat Research Team (Remote)
USA CO Remote
Full Time Senior-level / Expert USD 135K - 210K
- Remote-first
- @CrowdStrike
- Website
CrowdStrike
CrowdStrike is a global cybersecurity leader with an advanced cloud-native platform for protecting endpoints, cloud workloads, identities and data.#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We work on large scale distributed systems, processing over 1 trillion events a day with a petabyte of RAM deployed in our Cassandra clusters - and this traffic is growing daily. We’re looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to developing and shaping our cybersecurity platform. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.
About the Role:
The CrowdStrike Next-Generation Security Information and Event Management (NGSIEM) Content Threat Research team is seeking an experienced and passionate security researcher to analyze threat actor tactics ranging from prevalent to the most obscure, and to drive efforts to mitigate them by implementing robust coverage. The team is focused on analysis of ongoing and emerging threats by criminal and nation state actors impacting our customer base to enable threat detection engineers to enhance the capability and efficacy for the Falcon NGSIEM platform. If you have demonstrable proficiency in researching adversary tactics, techniques and procedures (TTPs) and real-world experience dealing with advanced threat actors (nation-state, criminal, hacktivist or other), we have a role for you!
This role would be part of the new CrowdStrike NGSIEM Content Threat Research team whose output ties directly to improving CrowdStrike Falcon’s detection and response capabilities. Team members research and emulate the latest and greatest adversary TTPs and work alongside various other teams to implement high fidelity behavioral coverage. Additional sought after outputs include thought leadership in the form of published blogs and conference talks.
The team is dedicated to responding to our customer's security needs as the threat landscape evolves, and ensuring CrowdStrike maintains coverage of all relevant threats regardless of the source of attack. Falcon NGSIEM is a new detection and response solution, and security researchers on the team will have the opportunity to translate their research findings into impactful detection capabilities backed by an unprecedented number of events at their disposal for analytic initiatives.
What You’ll Do:
As the CrowdStrike NGSIEM Content Threat Research team is relatively new, we are looking for a Senior Security Researcher to assist in building the foundation of what this team will ultimately become, and your contributions and input will directly affect it. You will get to work with a vast amount of data, have a direct impact on the product detections, collaborate with various engineering teams, and contribute to setting the strategic direction for the team.
You have a deep understanding of the threat landscape and are experienced in applying that knowledge to identify trends to anticipate shifts in tactic, technique and procedures (TTPs) to implement emulations and engineer detection solutions
You are capable and comfortable communicating information to both technical and executive-level stakeholders
You have experience driving thought leadership in the form of blog posts and conference talks
You are comfortable assessing cyber threat intelligence, open-source intelligence (OSINT) or partner reporting
You have experience emulating threat actor TTPs to drive detection content development
You have experience use red team tooling and/or performing penetration testing
You are looking for a dynamic, fast-paced and challenging role in an unconventional team environment
What You’ll Need:
Bachelor’s degree in information security, computer science or more than 7 years of equivalent work experience
Demonstrated ability to convey technical concepts to audiences with varying technical prowess
Willingness to teach and mentor others on the team
Bonus Points:
You have working knowledge of programming and scripting languages, in particular Python, Go, or Rust
You have experience with one or more SIEM/SOAR products (Splunk, Elastic Stack, LogRhythm, QRadar, etc.)
Contributions to the open source community (GitHub, Stack Overflow, blogging)
#LI-CW1
#HTF
Benefits of Working at CrowdStrike:
Remote-first culture
Market leader in compensation and equity awards
Competitive vacation and flexible working arrangements
Comprehensive and inclusive health benefits
Physical and mental wellness programs
Paid parental leave, including adoption
A variety of professional development and mentorship opportunities
Offices with stocked kitchens when you need to fuel innovation and collaboration
We are committed to fostering a culture of belonging where everyone feels seen, heard, valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.
CrowdStrike is committed to maintaining an environment of Equal Opportunity and Affirmative Action. If you need reasonable accommodation to access the information provided on this website, please contact Recruiting@crowdstrike.com for further assistance.
CrowdStrike participates in the E-Verify program.
Notice of E-Verify Participation
CrowdStrike, Inc. is committed to fair and equitable compensation practices. The base salary range for this position in the U.S. is $135,000 - $210,000 per year + variable/incentive compensation + equity + benefits. A candidate’s salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications and location.Expected Close Date of Job Posting is:08-25-2024Tags: Cassandra Cloud Computer Science CrowdStrike GitHub LogRhythm Open Source OSINT Pentesting Python QRadar Red team Rust Scripting SIEM SOAR Splunk Threat detection Threat intelligence Threat Research TTPs
Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flex vacation Health care Parental leave Salary bonus Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Security Consultant jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information System Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open DevSecOps-related jobs