Principal Threat Detection Research Engineer

CrowdStrike

full-time

Posted on: 9/26/2025

Origin: • 🇺🇸 United States

✨ AI Apply

💰 $195,000 - $290,000 per year

Lead

AWSCloudGoPython

About the role

Analyze and validate malware threats using behavioral analysis, execution, and reverse engineering
Communicate technical threat details and mitigation strategies to response and engineering teams
Collaborate to prioritize and define automation opportunities to streamline threat analysis workflows
Perform reverse engineering of malware and exploits to identify TTPs and support mitigation planning
Contribute proof-of-concept automation and tooling to demonstrate new ideas and accelerate analysis
Continuously research and integrate new threat detection and analysis techniques
Provide actionable intelligence to improve Falcon’s defense capabilities
Lead scalable approaches via automation and machine learning to handle large malware volumes

8+ years’ experience in threat research, with a focus on malware analysis and cloud threat actor tradecraft
Experience in reverse engineering, disassembly, and analyzing file-based threats and exploits
Experience with AWS tradecraft, IaaS, IaC, and threat actor use of cloud IAM
Strong understanding of OS internals and behavior-based detection systems
Familiarity with MITRE ATT&CK for describing threat behaviors
Proficiency in at least one scripting or programming language - Python, C/C++, or Go
Experience producing and handing off proof-of-concept tools and automation to engineering
Excellent interpersonal skills with the ability to collaborate cross-functionally and influence priorities
Ability to periodically undergo and pass additional background and fingerprint check(s) consistent with government customer requirements