Sr. Security Researcher (Remote, GBR)

About the Role:

The CrowdStrike Intelligence team is looking for a motivated researcher with experience in the information security domain and software development skills to work on our dedicated Intelligence Automation team, building processing pipelines, information storage systems, and presentation layers in support of malware analysis pipelines, including static and dynamic sandboxing environments.

The collection, processing, and exploration of malware samples and other information at a large scale is at the core of the Intelligence mission at CrowdStrike. The Intelligence Automation team is responsible for prototyping, building, and operating the systems that make up our Intelligence pipeline, and we'd like you to join us!

This position is at the intersection of threat analysis and software development. It serves an important role in increasing our visibility into the global threat landscape, and contributes to the continuous tracking of more than a hundred adversary groups.

You will mainly use Go and Python to maintain and improve our world-class malware processing pipeline technology as well as downstream data integration and processing systems in a fast-paced Intelligence environment. In this environment, requirements sometimes shift rapidly, and projects can live anything from weeks to years depending on changes in the surrounding ecosystem. You will be responsible for all aspects of the software you design, from documentation to deployment to production, and will interact regularly with your internal customers to gather requirements, solicit feedback, and validate your results. When encountering problems or bugs you will use your debugging skills, including binary reverse-engineering, to determine the root cause and mitigate the issue.

As a remote employee on a team distributed across various time zones, you will not have direct access to all of your co-workers for the entire workday, so the ability to work unsupervised, communicate asynchronously, and take the initiative in maintaining lines of communication is important. In addition, we are looking for someone who would like to be part of a team who are passionate about their work and go the extra mile to exceed expectations. We love enthusiastic individuals who bring a positive attitude to their work and really care about what they produce for our internal customers.

What You'll Do:

• Integrate into the Intelligence team and gather requirements from Intelligence Analysts and Technical Analysts as internal customers

• Develop and maintain a large-scale malware analysis pipeline

• Develop detection content for the analysis pipeline to extend coverage of new threats in collaboration with various analyst teams

• Autonomously make choices about implementation details, as well as the right

  balance between rapid development, scalability, and performance

• Continuously improve an extensive existing Go/Python codebase

What You'll Need:

• Bachelor’s degree in Computer Science or equivalent academic/work experience

• Proficiency in at least one of these languages: Python, Go

• Experience developing production-grade software

• Knowledge of docker and container orchestration

• Knowledge of malware sandboxing/analysis technologies and sandbox evasion techniques

• Ability to communicate technical detail in a simple, top-down manner to both, management and customers

• Ability to independently make sound, justifiable decisions and take action

• Ability to plan, organize and prioritize work independently and meet deadlines

• Ability to work on a geographically distributed and diverse team

Bonus Points:

• Familiarity with the AWS cloud ecosystem (e.g. EC2, S3, VPC, ECS)

• Knowledge of Windows OS internals and virtualization with QEMU

• Experience in binary reverse engineering

• Experience creating scalable and well-documented HTTP APIs

• Offensive information security experience, e.g. from capture-the-flag (CTF) competitions

• Experience with Ansible and large-scale VM management

#LI-EV1

#LI-JP2

#L1-Remote

We are committed to fostering a culture of belonging where everyone feels seen, heard, valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.