Sr. Security Researcher II (Remote, DEU)

Senior Security Researcher II (Remote, Germany)

CrowdStrike is a global leader in cybersecurity, protecting organizations with an AI-native platform. We are seeking a motivated Security Researcher with excellent technical skills to join our Advanced Research Team (ART). This is a permanent, remote position based in Germany.

About the Role

As a Security Researcher in the Advanced Research Team (ART), you will contribute to CrowdStrike Intelligence's mission by researching and publishing on information security topics, providing technical expertise, developing tools for analysts, and collecting technical artifacts related to adversary activity. You will also be expected to provide innovative solutions on short notice to meet ad-hoc needs from other teams within CrowdStrike Intelligence.

What You’ll Do

• Develop automated solutions for large-scale data collection, processing, and analysis, including:
  • Vendor patch processing and analysis
  • Identification of exploits in large file collections
  • Identification of browser exploits
  • Identification of malicious infrastructure
• Conduct vulnerability research on a wide range of targets, including:
  • Analyzing vendor patches to identify vulnerabilities and develop proof-of-concept exploits.
  • Reviewing evidence of malicious activities (e.g., log files, payloads) to confirm exploitation of 0-day and n-day vulnerabilities, identify root causes, and reproduce exploits.
  • Identifying new vulnerabilities in applications or products.
• Collaborate with other teams at CrowdStrike Intelligence and beyond to:
  • Reproduce emerging vulnerabilities and provide actionable technical information.
  • Inform on information security topics.
  • Satisfy unique technical collection requirements.
• Publish research findings on the CrowdStrike blog or at conferences.

What You’ll Need

• Proficiency in English, both written and spoken.
• A strong information security background with 4+ years of experience.
• Proven experience in vulnerability research and exploit development.
• Ability to effectively leverage Generative AI/Large Language Models (GenAI/LLMs) to aid in software development and perform vulnerability research.
• Experience with reverse engineering.
• A solid understanding of Microsoft Windows and Linux operating system internals.
• Solid software development experience, with Python being preferred.
• Excellent problem-solving, creativity, and analytical skills for investigation and assessment.
• Ability to work independently with a customer-oriented mindset.
• Ability to work remotely in a collaborative team environment.

Bonus Points

• Successful participation in Capture The Flag (CTF) competitions.
• Experience with mobile platforms and operating systems (e.g., Android, iOS).
• Experience with macOS.
• Experience with Go or Rust programming languages.
• A background in Threat Intelligence.

Education

• Master of Arts/Master of Science or equivalent professional experience in Information Security, Computer Science, Computer Engineering, or a related field.

Benefits of Working at CrowdStrike

• Market leader in compensation and equity awards.
• Comprehensive physical and mental wellness programs.
• Competitive vacation and holidays for recharge.
• Paid parental and adoption leaves.
• Professional development opportunities for all employees.
• Opportunities to build connections through Employee Networks, geographic neighborhood groups, and volunteer initiatives.
• Vibrant office culture with world-class amenities.
• Great Place to Work Certified™ across the globe.

CrowdStrike is an equal opportunity employer committed to fostering a culture of belonging. We support veterans and individuals with disabilities.