At CrowdStrike we’re on a mission - to stop breaches. Our groundbreaking technology, services delivery, and intelligence gathering together with our innovations in machine learning and behavioral-based detection, allow our customers to not only defend themselves, but do so in a future-proof manner. We’ve earned numerous honors and top rankings for our technology, organization and people – clearly confirming our industry leadership and our special culture driving it. We also offer flexible work arrangements to help our people manage their personal and professional lives in a way that works for them. So if you’re ready to work on unrivaled technology where your desire to be part of a collaborative team is met with a laser-focused mission to stop breaches and protect people globally, let’s talk.
About the Role
The Red Team Tool Developer will join a team dedicated to performing Red Team activities that simulate known threat actors. We are a customer first driven team that helps CrowdStrike customer’s identify gaps in their ability to detect malicious activity at each phase of an attack. The Red Team Tool Developer will directly support the team with offensive capability improvements and ensure the team is delivering unique and custom attacks during red team engagements.
Design, develop, and test new features within a lab environment
Implement, test, and bug-fix functionality
Responsibility for design and implementation of software projects
Design, build, and maintain efficient and reliable code
Detect and track end-point protection bypasses
Work with the Red Team to identify needs and prioritize project development pipeline.
Provide development support to the Red Team to improve overall offensive capabilities.
Provide operational support to Red Team members on active engagements.
Document completed development projects for operational use.
Act as a liaison between Red Team and other internal CrowdStrike teams for information sharing around offensive capabilities.
Successful candidates will have experience in the following areas:
Strong object-oriented development in C#
Fundamental understanding of red team operations and penetration testing phases
Fundamental understanding of end-point protection and security controls
Strong understanding of Active Directory environments
Solid development experience interacting with the Windows API
Working knowledge of Windows networking protocols, authentication methods, and privileges
Comfortable with reverse engineering, vulnerability research, exploit development, and shellcode creation is a plus
Comfortable with memory injection, callback hijacking, and process execution flows is a plus
Comfortable with disassemblers and debuggers, such as: WinDBG, Immunity Debugger, GDB, IDA, Ghidra, and Binary Ninja is a plus
Experience with modern network topologies and application deployment platforms, such as: AWS, Azure, Kubernetes, and Docker is a plus
Security community participation (conference speaker or tool development contributor) is a plus
Working knowledge of Linux/Mac file systems, daemons, and shell environments is a plus
Proficient development in C/C++ is a plus
Experience with developing custom command and control frameworks or offensive security tooling is a plus
Additionally, all candidates must possess the following qualifications:
3+ years of relevant development experience
Strong problem solving skills
Ability to manage development projects start to finish
Strong communication skills
Ability to handle high pressure situations in a productive and professional manner.
BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field.
Benefits of Working at CrowdStrike:
- Market leader in compensation and equity awards
- Competitive vacation policy
- Comprehensive health benefits + 401k plan
- Paid parental leave, including adoption
- Flexible work environment
- Wellness programs
- Stocked fridges, coffee, soda, and lots of treats
We are committed to building an inclusive culture of belonging that not only embraces the diversity of our people but also reflects the diversity of the communities in which we work and the customers we serve. We know that the happiest and highest performing teams include people with diverse perspectives and ways of solving problems so we strive to attract and retain talent from all backgrounds and create workplaces where everyone feels empowered to bring their full, authentic selves to work.
CrowdStrike is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.