As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. We work on large scale distributed systems, processing almost 3 trillion events per day and this traffic is growing daily. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.
The Product Group:
IOT Security Product Group is focussed on developing products and solutions for ICS/ OT and other IOT verticals like Healthcare. The charter for the team is to use CrowdStrike's platform capabilities and threat intelligence, and build modules and features, integrate with partner products and platforms to establish ourselves as the leading security vendor in this space.
About the Role:
This role will have a solid understanding of the IOT ICS domain. He/ she will understand the Purdue model, the assets, criticality and the data pertaining to security and its sources to provide accurate asset visibility, vulnerabilities. This involves understanding the domain and systems and software like SCADA servers, HMI, EW, DCS and understanding how adversaries may exploit these resources to advance their modes of interest. This person will be required to identify the data sources, gather the data, analyse the data, identify its criticality, and also automate simple tasks. They will also be responsible for troubleshooting issues with current data and making enhancements.
What You'll Do:
- Identify, evaluate, and onboard vulnerability data sources relevant to OT/IoT vendors and devices, assessing reliability, timeliness, and coverage quality.
- Monitor threat intelligence and vulnerability disclosures to inform content prioritization.
- Handling and troubleshooting Customer escalations, to validate content quality and inform product improvements.
- Maintain a structured device inventory and prioritize expansion opportunities based on customer and market needs.
- Identify pipeline bottlenecks and propose process improvements to enhance content quality and delivery.
- Contribute to KPI development and baseline metric tracking for pipeline performance and content coverage
- Operationalize health checks and quality controls across the vulnerability content pipeline.
- Establish and maintain a cadence for monitoring new CVE disclosures against the supported device inventory, triaging and routing findings appropriately
- Engage with customers in POVs and beta programs to improve platform capabilities.
- Collaborate with security SMEs to develop detection content focused on adversary activity in industrial environments
- Leverage generative AI tools to accelerate vulnerability analysis, proof-of-concept development, and detection rule creation while maintaining human oversight for validation and detection accuracy.
- Design and implement AI agent workflows to automate multi-step vulnerability validation processes (e.g., discovery, analysis, prioritization, remediation guidance) while ensuring human-in-the-loop verification for critical vulnerability detections and false positive reduction.
- Other projects as assigned
What You'll Need:
- 3–7 years of hands-on experience in OT/IoT security, vulnerability research, or related technical disciplines
- Proficiency with packet analysis tools such as Wireshark, Zeek, or Scapy; experience writing custom dissectors or parsers for OT protocols.
- Experience working in or supporting OT environments, including familiarity with SCADA, DCS, HMI, or other Purdue Model L2/L3 systems and their security considerations.
- Programming/scripting proficiency for automating tasks, data processing, and pipeline tooling. Python or Go required; additional languages a plus
- Working knowledge of IoT/ICS/OT network architecture and the unique security challenges of operational environments
- Working knowledge of ICS/OT protocols such as Modbus, DNP3, ENIP, and similar
- Familiarity with IOT security compliance standards and processes, such as NIST CSF, IEC 62443 or AWIA etc. is good to have
- Curiosity-driven research mindset, able to identify and evaluate relevant threat intelligence, vulnerability disclosures, and adversary activity in the ICS/OT domain
- Ability to communicate, collaborate, and work effectively in a globally distributed team, customers and partners.
#LI-SM2
**Benefits of Working at CrowdStrike: **
- Market leader in compensation and equity awards
- Comprehensive physical and mental wellness programs
- Competitive vacation and holidays for recharge
- Paid parental and adoption leaves
- Professional development opportunities for all employees regardless of level or role
- Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
- Vibrant office culture with world class amenities
- Great Place to Work Certified™ across the globe
CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.
CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.
If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.