Sr. Red Team Engineer (Remote)

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn't changed - we're here to stop breaches, and we've redefined modern security with the world's most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We're also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We're always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

Malware Research Center:

The CrowdStrike Malware Research Center (MRC) is at the core of Falcon's malware detection and response capabilities. The team focuses on understanding the threat landscape and sets the target for what Falcon should be detecting and preventing. Additionally, the MRC is responsible for understanding our capabilities and mapping how well our machine learning and behavioral protection capabilities are doing against those threats. Where there is a gap, the MRC takes action to improve our detection stance and overall protection story. There are many parts of CrowdStrike working towards protecting customer environments and the MRC works across all of them to ensure we are on target and providing the best protection for the current threat landscape.

About the Role:

The Sr. Red Team Engineer will work on a team dedicated to performing activities simulating known threat actors, evaluating advanced techniques, researching new techniques to evaluate and improve CrowdStrike's Falcon platform. They are expected to be able to develop tools, plan, and oversee assessment execution to help engineering teams measure and improve the product.

What You'll Do:

• Design, implement, and execute adversarial emulations, technique research, product measurement, reporting, and metrics.
• Replicate and implement malware and evasion techniques.
• Perform tradecraft analysis of malware and offensive security tools.
• Replicate and implement cloud-specific attack scenarios.
• Report results, including mitigations strategies, for both management and technical audiences.
• Must be able to effectively communicate at all levels within CrowdStrike.
• Work with a wide team and assist in developing and improving Falcon's effectiveness.

What You'll Need:

• Bachelor's Degree in a technical field or related experience.
• Minimum 5 years of experience in Red Team/Penetration Testing activities is highly preferred.
• Security community participation (conference speaker, tool development contributor, blog posts) is valued.
• Comprehensive understanding of the security methodologies, technologies, and best practices.
• Experience with EDR bypass and tampering.
• Experience with public cloud providers and their services (AWS, Azure, GCP, OCI, etc.)
• Understanding of cloud-specific attack vectors and vulnerabilities (e.g., serverless attacks, API abuse, KMS exploitation, container escape, etc.)
• Good knowledge of Windows / Linux / Mac operating systems.
• Experience with reverse engineering toolsets (IDA, Ghidra, windbg, gdb, etc.)
• Experience in one or more high level programming languages (C/C++, Rust, .Net, Go, etc) and low-level programming languages (ASM).
• Experience in automation and scripting of applications and systems.
• Experience with MITRE ATT&CK Framework.
• Experience with operational support for operating systems, applications and networks is preferred.
• Desirable Certifications: OSCP, GPEN, OSCE, GCIH, GXPN, GREM, OSEP, AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate , Google Cloud Certified - Professional Cloud Security Engineer.

#LI-Remote

#LI-EV1

#LI-JP1

Benefits of Working at CrowdStrike:

• Remote-friendly and flexible work culture
• Market leader in compensation and equity awards
• Comprehensive physical and mental wellness programs
• Competitive vacation and holidays for recharge
• Paid parental and adoption leaves
• Professional development opportunities for all employees regardless of level or role
• Employee Resource Groups, geographic neighbourhood groups and volunteer opportunities to build connections
• Vibrant office culture with world class amenities
• Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at for further assistance.