What you'd actually do

Design and build detection logic and systems leveraged across teams within CrowdStrike to detect cyber attackers and stop breaches

Extend our existing codebase utilizing Swift, C++, Python, and other tools and DSLs (domain specific languages) as appropriate

Research techniques for detecting malicious activity including some reverse engineering and/or big data analysis

Leverage your understanding of engineering best practices, including topics like secure coding, testing paradigms, debugging, performance, code reviews, CI/CD and os internals, to ensure that our sensor code is fast and reliable

Troubleshoot issues with the product as reported from customers responsively and other projects as assigned

Skills

Required

Reverse engineering
threat detection
malware analysis
Swift
C/C++
Python
Objective-C
macOS kernel and user space
macOS internals
Linux internals

Nice to have

endpoint threat detections
sensor development
Linux threat landscape
Windows threat landscape
macOS Frameworks
security events
24/7 enterprise software development
CI
testing
debugging
performance tracing
release management
telemetry analysis
issue handling

What the JD emphasized

5+ years of experience

Low-level OS knowledge of macOS and/or Linux operating system internals, components, APIs and/or frameworks.

Team player – able to lead, mentor, communicate, collaborate, and work effectively in a distributed team, to clearly articulate thoughts & designs to peers and upper management

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. We work on large scale distributed systems, processing almost 3 trillion events per day and this traffic is growing daily. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role:

In this role you will research and develop techniques for detecting malicious activity occurring on macOS systems. Once researched you will develop them into production level solutions for deployment in the endpoint sensor. The role is a split of research and implementation working alongside a small and nimble group of MacOS engineers and often leveraging shared code with other sensor platforms such as Windows and Linux.

Successful engineers in this role have: an understanding of macOS kernel and user space, a passion for continuous learning to keep up with an ever-changing threat landscape, a creative mindset for designing new detection methods and the discipline to write fast and reliable code.

This role is hybrid, requiring 2-3 days per week on-site at one of the posted locations

What You'll Do:

Design and build detection logic and systems leveraged across teams within CrowdStrike to detect cyber attackers and stop breaches
Extend our existing codebase utilizing Swift, C++, Python, and other tools and DSLs (domain specific languages) as appropriate
Research techniques for detecting malicious activity including some reverse engineering and/or big data analysis
Leverage your understanding of engineering best practices, including topics like secure coding, testing paradigms, debugging, performance, code reviews, CI/CD and os internals, to ensure that our sensor code is fast and reliable
Troubleshoot issues with the product as reported from customers responsively and other projects as assigned
Be an energetic ‘self-starter’ with the ability to take ownership and be accountable for deliverables, both individually and when leading a team

What You'll Need:

5+ years of experience with either:
- Reverse engineering, threat detection, and malware analysis; and an interest in on-device development, or
- Designing, building, and delivering high-quality software in at least one of the following: Swift, C/C++, Python, Objective-C; and an interest in security.
Low-level OS knowledge of macOS and/or Linux operating system internals, components, APIs and/or frameworks.
Team player – able to lead, mentor, communicate, collaborate, and work effectively in a distributed team, to clearly articulate thoughts & designs to peers and upper management

Bonus Points:

Prior security experience, particularly in endpoint threat detections or sensor development. Familiarity with the threat landscape on Linux/Windows is a plus
Experience with macOS Frameworks and events relevant to security and recent familiarity with the recent developments in macOS
Experience developing 24/7 enterprise software, including CI, testing, debugging, performance tracing, release management, telemetry analysis and issue handling

#LI-DR1

#LI-Hybrid

#HTF

Benefits of Working at CrowdStrike:

Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.

Find out more about your rights as an applicant.

CrowdStrike participates in the E-Verify program.

Notice of E-Verify Participation

Right to Work

CrowdStrike, Inc. is committed to fair and equitable compensation practices. Placement within the pay range is dependent on a variety of factors including, but not limited to, relevant work experience, skills, certifications, job level, supervisory status, and location. The base salary range for this position for all U.S. candidates is $140,000 - $215,000 per year, with eligibility for bonuses, equity grants and a comprehensive benefits package that includes health insurance, 401k and paid time off.

For detailed information about the U.S. benefits package, please click here.