Sr. Security Researcher - Data Ops (remote) - Remote Eligible

Senior Security Researcher

CrowdStrike is looking for a self-starting, responsible, action-oriented, and highly motivated Senior Security Researcher to join our Counter Adversary Operations team. This position will require the candidate to collect and analyze data from the cybercriminal underground that could impact the security and privacy of CrowdStrike customers and their users.

A successful candidate will be an operational security (OPSEC)-savvy, detail-oriented problem solver, and have substantial experience driving concurrent projects and issues to completion with minimal direction.

Highly qualified candidates will have an excellent technical foundation, as well as experience in cyber threat intelligence.

What You'll Do:

• Complete technical collections projects including acquisition, monitoring, and analysis of deep and dark web data.
• Employ secure operational tradecraft methods and practices.
• Conduct proactive research into underground cybercriminal economies and how threat actors are exploiting or abusing emerging technologies.
• Collaborate closely with multiple stakeholders of CrowdStrike's global Counter Adversary Operations team.

What You'll Need:

Required:

• At least 4 years professional experience in cyber threat intelligence, open source intelligence, or information security.
• Proficient in at least one general-purpose programming language such as Python, and experience with developing tools for data extraction, webscraping, and interacting with databases.
• Experience designing and leading data-driven investigations, and visualizing results, to communicate actionable findings to stakeholders and various audiences.
• Demonstrated experience in leveraging machine learning, generative AI applications, and LLMs to automate workflows and understand large datasets.
• Proven ability to design, implement and interact with RESTful and other types of APIs for both data retrieval and system integration.
• Experience building, deploying, and maintaining tools and services with Docker, Git, and automated pipelines for internal and external users.
• Confidence in navigating large datasets of unique, unstructured data and preparing it for analysis, and using statistical methods to find needles in the haystack.
• Appreciation for CrowdStrike's mission and principled in the concepts of security, trust and safety, and privacy.
• Understanding of technical terminology, tools, and tactics employed by state-backed and cybercriminal adversaries.
• Comprehensive, practical knowledge of research collection tradecraft, including operational security (OPSEC) principles and best practices.
• Ability to work remotely, in a collaborative team environment across different time zones.

Preferred:

• Additional language expertise (Russian, Mandarin, Korean, Spanish, Farsi, Arabic, Japanese, French, Hindi, Urdu or others).
• Prior intelligence community or cyber threat intelligence background.
• Demonstrated engagement in the security community, academic research community, or open source software development.
• Experience in parsing and operationalizing logs to monitor and maintain applications.
• Familiarity with network analysis techniques.

Benefits of Working at CrowdStrike:

• Remote-friendly and flexible work culture
• Market leader in compensation and equity awards
• Comprehensive physical and mental wellness programs
• Competitive vacation and holidays for recharge
• Paid parental and adoption leaves
• Professional development opportunities for all employees regardless of level or role
• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
• Vibrant office culture with world class amenities
• Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed.