At CrowdStrike we’re on a mission - to stop breaches. Our groundbreaking technology, services delivery, and intelligence gathering together with our innovations in machine learning and behavioral-based detection, allow our customers to not only defend themselves, but do so in a future-proof manner. We’ve earned numerous honors and top rankings for our technology, organization and people – clearly confirming our industry leadership and our special culture driving it. We also offer flexible work arrangements to help our people manage their personal and professional lives in a way that works for them. So if you’re ready to work on unrivaled technology where your desire to be part of a collaborative team is met with a laser-focused mission to stop breaches and protect people globally, let’s talk.
About the Role:
We are looking for a Senior Software Development Engineer (SDE) on our Cloud Workload Protection Platform (CWPP) team which is a brand new and a key product area for CrowdStrike. We’re extending CrowdStrike’s mission of “stopping breaches” into the public cloud and cloud native workloads. CrowdStrike’s CWPP offering will give customers the ability to monitor and track their cloud native workloads as well as hardening and protecting them against attacks prior to deployment. This offering will help with defending against potential adversary activities involving cloud native resources. When coupled with Falcon, CrowdStrike’s endpoint security offering, our CWPP offering will provide a more comprehensive perspective on how the adversary is targeting key customer infrastructure. Our ultimate goal is to providing a single platform for securing the entire lifecycle of cloud workloads.
As part of this role you will create the rules, content-packs and hunting triggers for the Falcon Cloud Security product line. The role involves tracking capabilities of new and existing public cloud workloads and services and understanding how adversaries may exploit these resources to penetrate our customers infrastructure. Further, the role involves mapping industry-standard compliance standards onto public cloud infrastructure. This person will be required to gather the data, analyze the data, identify its criticality and automate complex detections.
What You’ll Need:
Experience level 2-6 years.
Tracking and researching release of new cloud resource types and services, with a focus on security risk and attack surface expansion
Deep understanding of cloud workloads such as Docker containers
Understanding of Operating systems, networking, virtualization
Up to date knowledge of latest attacks and techniques used to breach related to cloud threats, vulnerabilities and key adversary modes of interest
Coordinating with Security SMEs to build hunting rules and triggers, which focus on adversary activity within the cloud control plane.
Handle Customer escalations, to identify False-Positive & False-Negative
Data discovery and validation (Data efficacy & Accuracy)
Good understanding of public cloud resource and control plane threats and vulnerabilities, specifically around AWS, Azure, GCP, Kubernetes
Prior security experience, particularly in exploit and vulnerability analysis is a plus
Ability to reverse-engineer software
Low-level OS knowledge is a big plus
Be an energetic ‘self-starter’ with the ability to take ownership and be accountable for deliverables, both individually and when leading a team.
Programming/scripting knowledge for automating day to day tasks – Python, Ruby, GoLang
Platform knowledge around GCP and Azure, specifically around security configuration and monitoring
Ability to communicate, collaborate, and work effectively in a globally distributed team
Experience in DevSecOps domain is a plus
Benefits of Working at CrowdStrike:
- Market leader in compensation and equity awards
- Competitive vacation policy
- Comprehensive health benefits + 401k plan
- Paid parental leave, including adoption
- Flexible work environment
- Wellness programs
- Stocked fridges, coffee, soda, and lots of treats
We are committed to building an inclusive culture of belonging that not only embraces the diversity of our people but also reflects the diversity of the communities in which we work and the customers we serve. We know that the happiest and highest performing teams include people with diverse perspectives and ways of solving problems so we strive to attract and retain talent from all backgrounds and create workplaces where everyone feels empowered to bring their full, authentic selves to work.
CrowdStrike is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.