at CrowdStrike, Inc. in Springfield, Illinois, United States
Job Description
CrowdStrike, Inc.Full time
R18374
About the Role:
CrowdStrike is looking for a self-starting, responsible, detailed-oriented, and highly motivated Security Researcher to join our growing Counter Adversary Operations team. This position will require the candidate to collect, monitor and measure aspects of the cybercriminal underground and the impact to CrowdStrike customers and their users.
A successful candidate will be an operational security (OPSEC)-savvy, detail-oriented problem solver, and have substantial experience driving concurrent projects and issues to completion with minimal direction.
Highly qualified candidates will have an excellent technical foundation, especially related to data analysis, metrics and observability, integration with APIs and high-throughput data streams, and automation development. Candidates should have a proven track record of successfully planning and executing long-term research projects.
What You'll Do:
Drive the monitoring, analysis, and classification of collected underground data.
Develop specialized enhancements and tooling that boosts observability in our intelligence operations and enables cyber operator excellence.
Conduct proactive research into environments of intelligence interest, and develop novel techniques and methods for tracking them.
Employ secure operational tradecraft methods and practices.
Collaborate closely with multiple and diverse stakeholders of CrowdStrike’s global Counter Adversary Operations team.
What You'll Need:
At least 2 years professional experience in cyber threat intelligence, open source intelligence, or data analytics.
Confidence in navigating large datasets of unique, unstructured data.
High proficiency in analytical tools such as SQL, R, Stata, Tableau, pandas (Python).
Proficient in Python programming, or in at least one general-purpose programming language such as JavaScript or Go.
Experience with data architecture and enablement platforms such as AWS, Azure, GCP, or Snowflake.
Familiarity with research approaches and experiment design, with a grounded understanding of scoping and executing long-term research projects.
Appreciation for CrowdStrike’s mission and principled in the concepts of security, trust and safety, and privacy.
Understanding of technical terminology, tools, and tactics employed by state-backed and cybercriminal adversaries.
Comprehensive, practical knowledge of research collection tradecraft.
Preferred:
Experience in applied statistics, data science, and analytics development.
Familiar with network security concepts and protocols.
Practical foreign language experience (Russian, Mandarin, Spanish, Farsi, Mandarin, Arabic, French, and others).
Prior intelligence community or cyber threat intelligence background.
Education:
Undergraduate degree, or equivalent experience, in computer science, data science, intelligence studies, political science, or international relations.
Demonstrated engagement in the security community, academic research community, or open source software development.
Other technical security certifications or research background is a plus.
PI240426202
CrowdStrike, Inc. is an Equal Opportunity Employer and does not discriminate against any applicants for employment based on their race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, physical or mental disability, genetic information, veteran status, uniformed service member status, or any other status protected by law.