Leading the Planning Department with responsibilities in network and facility planning. Driving asset management development and project planning in the energy sector.
About the role
- Cloud Runtime Threat Detections Engineer at CrowdStrike focused on safeguarding cloud environments from cyber threats. Join a team of experts in innovative detection and response capabilities in the cybersecurity landscape.
Responsibilities
- Stay abreast of the latest threat landscape and cloud security trends, continuously updating detection strategies to address emerging threats and vulnerabilities across Linux, container, Kubernetes, and virtualization platforms
- Conduct proactive threat hunting exercises leveraging customer intrusion data to identify security gaps and emerging attack patterns within cloud-native and traditional infrastructure
- Analyze real-world security incidents to reverse-engineer adversary techniques and translate threat intelligence into actionable detection coverage
- Execute rapid responses to critical security incidents, deploying detection coverage at global scale
- Respond quickly to extensive exploitation campaigns following vulnerability disclosures, developing and validating detections for emerging CVEs and attack vectors
- Collaborate with research, incident response and threat intelligence teams to identify detection opportunities from active security events
- Develop, implement, and optimize detection logic tailored to cloud runtime environments
- Conduct efficacy analysis and false positive reduction through continuous monitoring, testing, and tuning
- Leverage automation and AI-powered tools to scale detection development and gap analysis processes
- Drive detection engineering initiatives for emerging platforms including Kubernetes audit logs, ESXi/vSphere environments, and network-based detection capabilities
- Research and implement novel detection approaches for container escapes, process injection, in-memory execution, and other advanced evasion techniques
- Develop automation and tooling to improve detection quality, testing efficiency, and deployment velocity
- Collaborate with engineering teams on sensor enhancements, parser improvements, and platform feature development to expand detection visibility
- Track and present threat detection findings, including recommended strategies and product improvements to internal stakeholders and leadership
- Write and publish technical blog posts showcasing detection engineering methodologies, threat research, and innovative approaches to cloud security
- Represent CrowdStrike at industry conferences, delivering presentations on detection engineering, threat campaigns, and cloud security trends
Requirements
- Deep understanding of Linux-based systems, including process execution, file systems, networking, and kernel internals
- Demonstrated experience in container/container orchestrator intrusion analysis, detection development, or malware analysis
- Proficiency with programming and scripting languages, particularly Python and Bash, for automation and tooling development
- Experience with large-scale data analysis using SIEM or data analytics platforms
- Knowledge of detection engineering methodologies including behavioral analysis, static/dynamic indicators, and pattern matching
- Hands-on experience with Kubernetes, Docker, ESXi/vSphere, or other cloud-native and virtualization platforms (desired)
- Familiarity with MITRE ATT&CK framework and ability to map adversary techniques to detection logic (desired)
- Experience analyzing CVEs, proof-of-concept exploits, and developing detection coverage for vulnerability exploitation (desired)
- Background in threat hunting, incident response, or security operations (desired)
- Understanding of web application security, including webshell detection, SQL injection, and remote code execution (desired)
Benefits
- Market leader in compensation and equity awards
- Comprehensive physical and mental wellness programs
- Competitive vacation and holidays for recharge
- Paid parental and adoption leaves
- Professional development opportunities for all employees regardless of level or role
- Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
- Vibrant office culture with world class amenities
- Great Place to Work Certified™ across the globe
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
VoIP Engineer managing Aircall’s telephony infrastructure and ensuring secure, high - quality voice connectivity. Responsible for deploying cloud telephony technologies and collaborating with cross - functional teams.
Associate Enterprise Networks and Security Engineer maintaining network infrastructure and security for TalkTalk. Delivering stable network solutions and ensuring compliance with security standards.
Full - Stack Developer enhancing conversational AI products used by sales teams. Working student role in a scaling startup environment, with potential transition to full - time.
IT Systems Administrator responsible for administering IT infrastructure at Paylocity. Installing and configuring hardware, managing networks, and troubleshooting systems.
Project Geotechnical Engineer managing diverse geotechnical engineering projects in public and private sectors. The role involves design, investigation, analysis, and project management in Louisville, KY.
Managing Engineer leading engineering strategy and delivery for Allstate’s billing platform. Involving modernization of legacy systems and collaboration across teams.
Engineer responsible for designing and developing network management solutions at Tejas Networks. Collaborating across functions for feature development and integration into OSS products.
Graduate Engineer in the GNC/AOCS Competence Centre of DEIMOS, focusing on aerospace guidance and control systems. Involves design, development, and validation of autonomous systems.
Senior Engineer supporting design, implementation, and validation of GNC/AOCS systems for aerospace platforms. Engaging in modeling, specification, testing, and team management activities.