Proactively identify and track targeted intrusion cyber threats, trends, and new developments by Iran-nexus adversaries through analysis of raw intelligence and data
Apply analytic tradecraft to gathered intelligence in a consistent manner
Proactively identify and track adversary network infrastructure
Hunt for and perform basic triage of malicious file samples
Perform intrusion and attribution analysis
Provide finished intelligence analysis to internal and external customers through written reporting, in varying predetermined suspense and depth, with minimal supervision
Collaborate across teams to inform various functions within CrowdStrike Intelligence about activity of interest and to coordinate adversary/campaign tracking
Identify intelligence gaps and submit requests for information to fill gaps
Provide peer review of proposed/draft reporting to team members and analytic uplift to team members
Prioritize, categorize, and respond to requests for information from internal and external customers
Conduct briefings as needed for a variety of levels of customers as requested (via video conference, webcast, in-person briefing, or industry conference)

Requirements

Motivated self-starter with 5+ years’ experience in a threat intelligence and cybersecurity environment, with a focus on state-nexus cyber operations
Comprehensive, practical knowledge of research/collection tradecraft and analytical methods—to include intrusion analysis
Strong analytic writing skills, particularly the ability to produce quality finished intelligence products on short deadlines as well as continuing to maintain analysis for, and report on, long-term strategic assessments with minimal assistance
Familiarity with computer networking fundamentals, computer network defense (CND) operations, host-based forensics and network traffic monitoring
Ability to independently identify and track adversary tradecraft trends
Understanding of technical terminology, tools, and tactics employed by threat actors
An enthusiasm for collaboration, including being comfortable working in a team-oriented environment as well as across multiple teams to leverage subject matter expertise of colleagues
Passionate about taking the initiative to identify and develop new visibility into adversary operations
Ability or willingness to learn to conduct technical analysis of the tools and tradecraft used by threat actors
Knowledge of geopolitical issues and ability to use that information to support understanding of current and future impacts on the cyber threat landscape
Undergraduate degree, military training or relevant experience in cyber intelligence, computer science, general intelligence studies, security studies, political science, international relations, etc.
Other technical security certifications or academic background, such as a graduate degree, are a plus.

Benefits

Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

intrusion analysisthreat intelligencecybersecuritynetwork traffic monitoringhost-based forensicsresearch/collection tradecraftanalytic writingadversary tradecraft analysisgeopolitical analysistechnical analysis

Soft Skills

motivated self-startercollaborationteam-orientedinitiativestrong communicationability to work independentlypeer reviewprioritizationadaptabilityproblem-solving

Certifications

undergraduate degreemilitary traininggraduate degreetechnical security certifications