Logo of Huzzle

Home

Matches

Explore

Manage

Red Team TechOps Engineer (Remote)

image

CrowdStrike

3mo ago

Applications are closed

  • Job
    Full-time
    Mid-level (3-4 years)

Requirements

  • Reverse engineering skills and mindset in both vulnerability research and malware analysis
  • Forward engineering skills in languages such as C++, C#, and Python
  • Systems programming background in at least Windows + aptitude to learn Linux and macOS
  • Demonstrable understanding of EDR internals and other telemetry-based technologies
  • Demonstrable familiarity with using the OODA loop concept to subvert complex systems
  • Prior experience in goal-oriented red team operations and penetration testing phases
  • Prior experience in UX/UI elements of projects to improve workflows and adoption
  • Security community participation (conference speaker or tool contributor) is a plus
  • Experience with developing custom C2 frameworks or offensive security tooling is a plus
  • Prior experience with event streaming, web development, and data analysis is a plus
  • Familiarity with the following is a plus: Kafka, FastAPI, Neo4j, LogScale, Docker, Jenkins
  • Strong problem solving and critical thinking skills
  • Excellent oral and written communications skills in English
  • 3+ years of relevant engineering experience (some skills will be learned on the job)
  • Ability to recognize and demonstrate that stealth is relative
  • Ability to factor human cognition when developing technical bypasses (e.g. reflexive control, IPb)
  • Ability to maintain discretion related to sensitive work (both internally and externally)
  • Ability to be receptive to peer review and conform to project-specific conventions
  • Ability to explain topics you are familiar with at different abstraction levels
  • Ability to manage development projects from conception to ongoing maintenance
  • Ability to handle high pressure situations in a productive and professional manner
  • Ability to simultaneously consider multiple (sometimes opposing) perspectives
  • Ability to apply best practices (but flexible to bend conventions when appropriate)
  • Ability to form conclusions driven by data and evidence, in addition to intuition
  • Interest in knowing something about everything, and everything about something
  • Interest in modeling decision-making processes used for selecting TTPs is a plus
  • Interest in understanding adversary emulation beyond the execution of TTPs
  • Interest in understanding the dual-use nature of arbitrary technologies
  • Interest in developing solutions with a systems-level thinking approach
  • Interest in integrating knowledge from various non-cybersecurity domains is a plus
  • Interdisciplinary educational background (outside of cybersecurity) is a plus
  • Passion to understand and develop solutions requiring diverse skills (from ASM to ML). You are not required to be an expert in every skill, but should maintain an interest in how they are connected

Responsibilities

  • Build and maintain product testing systems that generate data for a decision support system.
  • Actively use systems to provide bespoke tactical intelligence to operators on engagements.
  • Respond to regular product updates to ensure capabilities are functional and resilient.
  • Development tasks that are both malware-oriented and platform-oriented.
  • Programming for Windows, Linux, and macOS platforms (user- and kernel-mode).
  • Programming related to event streaming, telemetry post-processing, and build engineering.
  • Provide development and infrastructure support to improve overall offensive capabilities.
  • Review analytics data from sensors to guide the development of offensive tradecraft.
  • Develop initial access and post-exploitation capabilities (some evasive, some noisy).
  • Contribute to capabilities to enhance operator decision making.
  • Proactively identify opportunities to improve workflows and processes.
  • Document completed development projects for operational use.
  • Share responsibilities on administration and infrastructure.

FAQs

What is the primary mission of CrowdStrike?

The primary mission of CrowdStrike is to stop breaches and provide unparalleled protection against sophisticated cyberattacks through its market-leading cloud-native platform.

What is the role of a Red Team TechOps Engineer at CrowdStrike?

The Red Team TechOps Engineer supports Professional Services Red Team activities by aiding in the simulation of known threat actors in client networks. This involves reducing operational uncertainty against defensive products and improving the team's strategic and tactical capabilities.

What are the key responsibilities of the Red Team TechOps Engineer?

Key responsibilities include building and maintaining testing systems, using those systems for tactical intelligence, responding to product updates, development tasks related to malware and platforms, providing infrastructure support, and documenting completed projects.

What specific skills are required for the Red Team TechOps Engineer position?

Required skills include reverse engineering, programming in languages such as C++, C#, and Python, systems programming experience with Windows (and a willingness to learn Linux/macOS), understanding of EDR internals, and prior experience in red team operations and penetration testing.

Is experience with specific technologies a requirement for this position?

While not mandatory, familiarity with technologies such as Kafka, FastAPI, Neo4j, LogScale, Docker, and Jenkins is considered a plus.

What are the qualifications needed for candidates applying for this role?

Candidates should possess strong problem-solving and critical thinking skills, excellent communication skills in English, a minimum of 3 years of relevant engineering experience, and the ability to manage development projects along with discretion regarding sensitive work.

What is CrowdStrike's stance on diversity and inclusion?

CrowdStrike is committed to fostering a culture of belonging where everyone feels valued, and they focus on diversity, equity, and inclusion through listening, learning, and collective action.

What benefits does CrowdStrike offer to its employees?

Benefits include a remote-first culture, competitive compensation and equity awards, flexible working arrangements, comprehensive health benefits, wellness programs, paid parental leave, and various professional development opportunities.

What is the expected salary range for the Red Team TechOps Engineer position?

The expected salary range for this position in the U.S. is between $115,000 and $180,000 per year, plus variable compensation, equity, and benefits.

How does the interview process accommodate candidates who require accommodations?

Candidates who need reasonable accommodations can reach out to Recruiting@crowdstrike.com for assistance accessing information or during the interview process.

CrowdStrike

Technology
Industry
5001-10,000
Employees

Mission & Purpose

CrowdStrike (Nasdaq: CRWD), a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity and data. Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities. Purpose-built in the cloud with a single lightweight-agent architecture, the Falcon platform delivers rapid and scalable deployment, superior protection and performance, reduced complexity and immediate time-to-value. CrowdStrike: We stop breaches.