Cloud Red Teamer
USA TX Remote, United States
As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.
Malware Research Center:
The CrowdStrike Malware Research Center (MRC) is at the core of Falcon’s malware detection and response capabilities. The team focuses on understanding the threat landscape and sets the target for what Falcon should be detecting and preventing. Additionally, the MRC is responsible for understanding our capabilities and mapping how well our machine learning and behavioral protection capabilities are doing against those threats. Where there is a gap, the MRC takes action to improve our detection stance and overall protection story. There are many parts of CrowdStrike working towards protecting customer environments and the MRC works across all of them to ensure we are on target and providing the best protection for the current threat landscape.
About the Role:
The Sr. Cloud Red Team Engineer will work on a team dedicated to performing adversarial activities, with this role specifically focusing on Cloud environments. As part of the team, you will emulate known threat actors' TTPs in cloud and hybrid environments, evaluate advanced cloud specific techniques and improve CrowdStrike's Falcon platform security capabilities.
What You’ll Do:
Design and execute adversarial emulations across cloud and hybrid environments, with emphasis on AWS.
Replicate and implement malware and evasion techniques.
Perform security assessments of cloud architectures and services.
Create and maintain attack frameworks and automation tools.
Document and report findings to both technical and management audiences.
Work with a wide team and assist in developing and improving Falcon’s effectiveness.
What You'll Need:
Deep expertise in AWS services, architecture, and security controls
5+ years of experience in Cloud Security and Red Team operations
Strong understanding of cloud attack vectors (IAM exploitation, serverless attacks, container escape, etc.)
Experience with EDR bypass and tampering.
Advanced knowledge of operating system internals (Windows, Linux, macOS)
Experience in one or more high level programming languages (C/C++, Rust, .Net, Go, etc) and low-level programming languages.
Experience with reverse engineering toolsets (IDA, Ghidra, windbg, gdb, etc.)
Experience with the MITRE ATT&CK Framework.
Security community participation (conference speaker, tool development contributor, blog posts) is valued.
Desirable Certifications: AWS Certified Security - Specialty certification, Additional AWS certifications (Solutions Architect, DevOps Engineer), OSCP, OSWE, OSEP
#LI-Remote
#LI-RC1
Benefits of Working at CrowdStrike:
Remote-friendly and flexible work culture
Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Resource Groups, geographic neighbourhood groups and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe
CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.
CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.
If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.
Find out more about your rights as an applicant.
CrowdStrike participates in the E-Verify program.
Notice of E-Verify Participation
CrowdStrike, Inc. is committed to equal pay for equal work in its compensation practices. The base salary range for this position in the U.S. is $110,000 - $180,000 per year + variable/incentive compensation + equity + benefits. A candidate's salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications, job level, supervisory status, and location.Expected Close Date of Job Posting is:05-18-2025 ApplyJob Profile
Hybrid Remote
Benefits/PerksAutonomy Competitive vacation Employee Resource Groups Equity Equity awards Flexibility Flexibility and autonomy Flexible work Flexible work culture Hybrid work Market leader Market leader compensation Market leader in compensation Market leader in compensation and equity Mental wellness programs Physical and mental wellness Physical and mental wellness programs Professional development Professional development opportunities Remote-first company Remote-friendly culture Vacation Vibrant office culture Wellness programs
Tasks- Build
- Create attack frameworks
- Design and execute adversarial emulations
- Document findings
- Perform security assessments
- Replicate malware techniques
- Training
AI Architecture Assessments Automation Automation tools AWS AWS services Behavioral protection C Cloud Cloud environments Cloud Security COM Cybersecurity Detection and response DevOps EDR Engineering Falcon Falcon platform Flexibility Frameworks Go IAM Innovation Linux Machine Learning MacOS Malware Malware Analysis Malware detection Malware research Management MITRE ATT&CK Operating system internals Operations Platform security Programming Programming languages Recruiting Red team Red Team Operations Research Reverse Engineering Rust SAFe Security Security assessments Support System Internals Technical Threat landscape Tool Development Training Windbg Windows
Experience5 years
EducationAS BE Cybersecurity Engineering Machine Learning Relevant Work Experience
CertificationsAWS Certified Security – Specialty AWS DevOps Engineer AWS Solutions Architect Cloud Security Linux OSCP OSEP OSWE
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9