Vulnerability Intelligence, Product Security (Remote)

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn't changed - we're here to stop breaches, and we've redefined modern security with the world's most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We're also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We're always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role:

Help us protect CrowdStrike and its customers from the most advanced threats! CrowdStrike's Product Security team breaks the mold of traditional internal security and focuses on active threats to CrowdStrike's products. As a Product Security Engineer on the Vulnerability Intelligence team, you will monitor for emerging vulnerabilities, deploy large-scale security/monitoring systems for asset visibility, utilize and provide feedback on the Falcon platform's latest features, and build tooling to solve complex security challenges.

What You'll Do:

Analyze emerging vulnerabilities, assess exploitability and business risk, and recommend prioritized remediation strategies
Conduct risk-based analysis of vulnerability exposure and develop data-driven prioritization frameworks aligned with business risk tolerance
Implement and monitor tools for detection and monitoring of assets across multiple clouds and data centers
Develop and maintain vulnerability management KPIs and communicate security posture to technical and executive stakeholders
Utilize the latest Falcon features to improve security posture and provide direct feedback to product teams

What You'll Need:

Able to thrive in a highly independent work environment
Applicable experience in a security role implementing and supporting security systems
Experience applying risk scoring frameworks (CVSS, EPSS, SSVC) and business impact analysis to prioritize vulnerabilities based on exploitability, asset criticality, and organizational risk tolerance
Ability to research CVEs, assess exploit availability, and leverage threat intelligence to understand real-world vulnerability impact beyond published severity scores
Strong scripting/development capabilities in one or more common scripting languages, such as Ruby/Chef, Python, Golang, etc.
Proven ability to collaborate across engineering, product, and leadership teams to negotiate remediation timelines and communicate risk in business context
Experience working with Linux and/or other Unix-like variants, cloud platforms (GCP) and highly concurrent systems

Bonus Points:

Experience with Kubernetes and containerized applications
Experience working with developers on security vulnerability impact and remediation efforts
Hands-on experience with the Falcon platform
Experience assessing software supply chain risks, open source vulnerabilities, and third-party dependencies for risk-based prioritization decisions
Familiarity with security frameworks (NIST, ISO 27001, CIS Controls) and compliance requirements that influence vulnerability remediation SLAs

#LI-Remote
#LI-RC1
This role will require the candidate to periodically undergo and pass additional background and fingerprint check(s) consistent with government customer requirements.

Benefits of Working at CrowdStrike:

Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.

Find out more about your rights as an applicant.