at CrowdStrike, Inc. in Springfield, Illinois, United States
Job Description
CrowdStrike, Inc.Full time
R18557
About the Team:
You'll be joining the Data Protection Team in our Data Security Product Group, whose mission is to build a unified data security system which enables customers to identify and investigate insider threats, identify access to and movement of sensitive data, and ensure regulatory compliance by mitigating data loss risk.
About the Role:
CrowdStrike Falcon Host is a two-component security product. One component is a “sensor”: a driver installed on client machines that observes system activity and recognizes malicious behavior, then provides on-box prevention capability and remote telemetry to the Falcon Host cloud. The sensor processes thousands of events per second to provide deep visibility into operations on the endpoint, and performs rich correlation and computation to identify malicious events and blocks malicious activity.
The cloud component aggregates sensor telemetry for each customer’s network, correlates malicious behavior across multiple machines, and presents our customers’ operations teams with a prioritized summary of the threats detected in their environments.
This is a Windows Kernel Developer role in the engineering team that delivers data protection-focused functionality in the sensor (lightweight agent) on Windows. Engineers in the team own the design and development of core features on the platform. Kernel-centric data protection-focused functionality centers around the Windows filesystem minifilter stack and associated interactions with concrete local and remote filesystems. The team operates under the Agile development principles and ships frequently.
What You'll Do:
Design and develop data protection-focused filesystem minifilter driver for deployment on Windows systems
Own features from design to delivery
Collaborate with multi-functional team in various physical locations
Troubleshoot issues with the product as reported from customers responsively
Other projects as assigned
What You’ll Need:
Ability to develop high-quality code in C/C++
Windows filesystem minifilter driver development experience
Ability to demonstrate C/C++ and Windows filesystem minifilter driver development capabilities, be it through job experience, schoolwork, or contributions to community projects
Understanding of best practices surrounding kernel-to-user space IPC
Understanding of the Windows filesystem filter model, the basics of local and remote filesystem implementations, and the corresponding interfaces at the filesystem minifilter level
Experience with kernel-level debugging processes and tools
#LI-SS1
#LI-MW1
#LI-Remote
#HTF
We are committed to fostering a culture of belonging where everyone feels seen, heard, valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.
CrowdStrike is committed to maintaining an environment of Equal Opportunity and Affirmative Action. If you need
PI240747508
CrowdStrike, Inc. is an Equal Opportunity Employer and does not discriminate against any applicants for employment based on their race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, physical or mental disability, genetic information, veteran status, uniformed service member status, or any other status protected by law.