Sr. Product Security Engineer - Investigations Team (Remote, AUS)Apply Job ID R4745 Date posted 08/31/2021
At CrowdStrike we’re on a mission - to stop breaches. Our groundbreaking technology, services delivery, and intelligence gathering together with our innovations in machine learning and behavioral-based detection, allow our customers to not only defend themselves, but do so in a future-proof manner. We’ve earned numerous honors and top rankings for our technology, organization and people – clearly confirming our industry leadership and our special culture driving it. We also offer flexible work arrangements to help our people manage their personal and professional lives in a way that works for them. So if you’re ready to work on unrivaled technology where your desire to be part of a collaborative team is met with a laser-focused mission to stop breaches and protect people globally, let’s talk.
About the Role:
Help ensure software and systems are designed and implemented to the highest security standards. Respond to security alerts, and lead investigations for incidents.
Help us protect CrowdStrike and its customers from the most advanced threats! CrowdStrike’s Product Security team breaks the mold of traditional internal security and focuses on active threats to CrowdStrike’s products. As a Sr Security Engineer you will monitor for threats and adversary activity across a hybrid cloud environment. You will lead investigations and incident response activities, create tooling for known gaps, and deploy large-scale security/monitoring systems.
Essential Duties and Responsibilities:
Lead investigations and incident response efforts for product and platform infrastructure
Create and refine security monitoring capabilities through threat hunting
Asses current threat landscape and business needs to prioritize workload effectively
Advocate for best security practices for handling customer data to the engineering organization
Deep experience analyzing host and application log telemetry with Splunk
Strong Incident Response experience including building timelines, gathering telemetry, establishing containment, and eradication. Incident commander / leadership experience a must
Knowledge of advanced adversary TTPs as they apply to a hybrid cloud environment
Applicable experience in a security role implementing and supporting security systems
Experience working with Linux and/or other Unix-like variants
Scripting capabilities shell, Python, Perl, Ruby, or some other automation system
Protocol knowledge of TCP/IP, HTTP, applied Cryptography, others
Familiarity with IDS systems such as Bro, Suricata, others
Experience supporting operational systems
Knowledge of cloud platforms and highly concurrent systems
Experience in a SaaS company and experience safeguarding customer data
You’re a clear thinker and efficient communicator
Technical security certifications or academic background a plus.
Benefits of Working at CrowdStrike:
- Market leader in compensation and equity awards
- Competitive vacation policy
- Comprehensive health benefits
- Paid parental leave, including adoption
- Flexible work environment
- Wellness programs
- Stocked fridges, coffee, soda, and lots of treats
We are committed to building an inclusive culture of belonging that not only embraces the diversity of our people but also reflects the diversity of the communities in which we work and the customers we serve. We know that the happiest and highest performing teams include people with diverse perspectives and ways of solving problems so we strive to attract and retain talent from all backgrounds and create workplaces where everyone feels empowered to bring their full, authentic selves to work.