Sr. Security Researcher II (Remote, DEU)

Position Overview

• Location Type: Remote
• Job Type: Full time
• Salary: Not Specified

CrowdStrike is a global leader in cybersecurity, protecting people, processes, and technologies that drive modern organizations. Our mission is to stop breaches, and we have redefined modern security with the world's most advanced AI-native platform. We are a mission-driven company that cultivates a culture of flexibility and autonomy, empowering employees to own their careers. We are seeking talented individuals with passion, a focus on innovation, and a commitment to our customers, community, and each other.

About the Role

CrowdStrike Intelligence is seeking a motivated security researcher with excellent technical skills to join the Advanced Research Team (ART). ART is responsible for researching and publishing on information security topics, providing technical expertise, developing tools for analysts, and collecting technical artifacts about adversary activity. Researchers will also provide unique solutions on short notice to support ad-hoc needs from other teams within CrowdStrike Intelligence.

What You’ll Do

• Perform vulnerability research on a wide variety of targets.
• Analyze vendor patches to identify vulnerabilities and develop proof-of-concept exploits.
• Review evidence of malicious activities (e.g., log files, payloads) to confirm exploitation of 0-day and n-day vulnerabilities, identify root causes, and reproduce exploits.
• Identify new vulnerabilities in applications or products.
• Develop automated solutions for collecting, processing, and analyzing data at scale (e.g., vendor patch processing and analysis, exploit identification in large file collections, identification of malicious infrastructure).
• Collaborate across other teams at CrowdStrike Intelligence and beyond to:
  • Reproduce emerging vulnerabilities and provide actionable technical information.
  • Inform on information security topics.
  • Satisfy unique technical collection requirements.
  • Publish research results on the CrowdStrike blog or at conferences.

What You’ll Need

• Proficiency in English, both written and spoken.
• Strong information security background with 4+ years of experience.
• Vulnerability research and exploit development experience.
• Reverse engineering experience.
• Solid understanding of Microsoft Windows and Linux operating system internals.
• Solid software development experience (Python preferred).
• Excellent problem-solving skills, creativity, and strong analytical skills to investigate, assess, validate, and think outside the box.
• Ability to work independently, with a customer-oriented mindset.
• Ability to work remotely, in a collaborative team environment.

Bonus Points

• Successful participation in CTF competitions.
• Experience with mobile platforms and operating systems (e.g., Android, iOS).
• Experience with macOS.
• Experience with the Go or Rust programming languages.
• Threat Intelligence background.

Education

• M.A./M.Sc. or equivalent professional experience in Information Security/Computer Science/Computer Engineering, or a related field.

Benefits of Working at CrowdStrike

• Remote-friendly and flexible work culture.
• Market leader in compensation and equity awards.
• Comprehensive physical and mental wellness programs.
• Competitive vacation and holidays for recharge.
• Paid parental and adoption leaves.
• Professional development opportunities for all employees regardless of level or role.
• Employee Networks, geograp