TotalCyber.io
Cyber Security jobs across the world
Copyright 2024 All Rights Reserved by YipCraft
We will contibute 1% of your purchase to remove CO2 from the atmosphere.
Threat Researcher (Remote)
CrowdStrikeUnited KingdomGermanyRomania
Remote
Full-time
As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate an inclusive culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.
Malware Research Center:
The CrowdStrike Malware Research Center (MRC) is core to Falcon’s malware detection and response capabilities. The team has a focus on understanding the threat landscape and sets the target for what Falcon should be identifying and preventing. Additionally, the MRC is responsible for understanding our capabilities, and mapping how well our machine learning and behavioral protection capabilities are performing against those threats. Where there is a gap, the MRC takes action to improve our detection stance, and improve our overall protection story. MRC also performs pathfinding research to enable technology development using innovation, prototyping and bleeding edge machine learning to support our flagship Falcon product. There are many parts of CrowdStrike working towards protecting customer environments, and the MRC works across all of them to ensure we are on target and providing the best protection for our current Threat landscape.
About the Role:
At CrowdStrike, we have a mission, which is to stop the breach. Success means winning a conflict against a dynamic adversary in an ever changing environment. To find and defend against adversaries, our threat research team reviews intelligence, researching malware and attacks, learning to think like an attacker. They focus on understanding relevant threats and techniques used by adversaries targeting our customers, and then create capabilities to observe, defend, and disrupt adversary operations at speed in any domain we protect.
What You'll Do:
The Threat Researcher will take input from many sources and validate if those threats are something Falcon can mount an effective defense against. The analysis can range from execution and review of the behaviors to reverse engineering. As Falcon is first a behavior-based platform, understanding how the threat is working and what it is doing to interact with the host environment is critical.
The Threat Researcher will be expected to efficiently understand the threat to identify how to best mitigate it.
Additionally, this role will be looked on as a subject matter expert when new threats are reported for understanding and formulating an opinion on how it should be addressed. Leaning on a proven track record of threat analysis, the successful candidate will be comfortable working to focus on the appropriate threats and clearly communicating key technical details of those threats.
As part of the role, you might engage with certification partners to articulate and communicate threat trends and how those are reflected in our detection capability. Experience working with certification partners like AV-Test, AV-Comparatives, SE Labs, and MITRE is a plus.
As the gateway to the response organization for many new threats, good cross team collaboration skills are important. Clear, effective communication of technical details in a means which is actionable is the key to success. This would also involve collaborating on creating thought leadership content (both internal and public-facing) related to key findings in threat research.
Another aspect of the position is working with the engineering team to define automation improvements and process automation to reduce time and manual effort in the analysis of threats. Like communicating the threat details, prioritizing automation tasks and features will help define success of the role. Being able to understand the bigger picture of threat analysis and convey that to the engineering team which may not be familiar with the process will be required. The team will look to the successful candidate to help define and prioritize the roadmap for analysis automation. These are the tools and systems which will ultimately automate manual data collection so more time can be spent on understanding the threat.
What You'll Need:
Bachelors or master’s and 5+ years of industry experience in information security or comparable field required (10+ years of experience in the threat research field).
Skilled in reverse engineering around file-less threats, exploits, and other attack techniques
Familiarity with attacks on containers and public cloud services is a plus, but not required.
A working knowledge of using MITRE ATT&CK to describe threat behaviors.
The Threat Research team is supported by an engineering team, but proof of concept automation is produced by researchers. Showing competence handing off research to engineering to produce results and ability to produce proof-of-concept projects to address immediate needs.
#LI-EV1
#LI-Remote
Benefits of Working at CrowdStrike:
Remote-friendly and flexible work culture
Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Resource Groups, geographic neighbourhood groups and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe
CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.
CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.
If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.
Threat Researcher (Remote)
Location
United KingdomGermanyRomania
Workplace
Remote
Type
Full-time