Detection Content Operations Engineer

Employment Type: Full time

Position Overview

CrowdStrike is a global leader in cybersecurity, protecting the people, processes, and technologies that drive modern organizations. We are seeking a hands-on, detail-oriented Detection Content Operations Engineer to manage the end-to-end release, triage, and observability of security detections in production. This role is critical for scaling our detection engineering operations by owning the execution and monitoring of detection content as it moves through deployment pipelines and into the field. You will operate at the intersection of release operations, runtime health, and first-level anomaly investigation, working closely with detection authors, release pipelines, runtime dashboards, and anomaly data to ensure detection efficacy and release stability at scale.

Responsibilities

• Execute detection content deployments through CrowdStrike’s internal tooling and manage progression through each stage.
• Monitor runtime telemetry and stage health to detect anomalies, regressions, or unexpected behavior post-release.
• Perform first-level triage on anomalous detection hits and partner with detection engineers to route or resolve issues.
• Define common mechanisms for rollbacks and alerting to standardize response to deployment issues.
• Create, maintain, and improve dashboards and playbooks for monitoring detection content health and release performance.
• Contribute feedback back into the authoring and QA process to improve detection efficacy.
• Help reduce operational friction and improve release reliability through automation or tooling improvements.
• Create and publicize customer-facing release notes, as well as own and execute internal communication for each release.

Requirements

• Experience with threat detection platforms, SIEMs, EDRs, or detection-driven security workflows.
• Some experience in SRE, QA, release engineering, or a similar hands-on operational role.
• Comfort with telemetry, logs, dashboards, and anomaly detection in large-scale distributed systems.
• Experience executing or coordinating structured releases in CI/CD environments.
• Familiarity with common CI/CD tools such as Jenkins, Git, or Bitbucket.
• Problem-solving mindset with a focus on root cause analysis.
• Energetic “self-starter” mentality with the ability to take ownership and be accountable for deliverables.
• Ability to thrive in a fast-paced, test-driven, collaborative, and iterative programming environment.
• Clear written and verbal communication skills to drive triage and cross-functional alignment.
• Passion for detection engineering, threat analysis, or security research, with the motivation to grow into more advanced roles.

Bonus Points

• Experience in using big data to analyze and monitor software quality metrics, identify anomalies or errors.
• Prior experience building dashboards or telemetry pipelines to monitor system health.
• Prior security experience, particularly always-on systems, endpoint threat detections or sensor development, and version control.

Company Information

CrowdStrike protects the people, processes, and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. We work on large-scale distributed systems, processing almost 3 trillion events per day, and this traffic is growing daily. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe, and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation, and a fanatical commitment to our customers, our community, and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

Benefits of Working at CrowdStrike

• Remote-friendly

#LI-NT1 #LI-Remote #HTF