Senior Windows Kernel Sensor Development Engineer - (Remote, Europe)

DEU Remote

CrowdStrike

CrowdStrike is a global cybersecurity leader with an advanced cloud-native platform for protecting endpoints, cloud workloads, identities and data.

View all jobs at CrowdStrike

Apply now Apply later

​​#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We’re looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.

About the Role:

CrowdStrike is looking for a Senior Windows Kernel Sensor  Engineer to join our growing Content Research and Integration team within the EndPoint Protection Content group, which focuses on security related endpoint development on the Windows, macOS, and Linux platforms.

The Endpoint Protection Content group plays a central role in fulfilling CrowdStrike’s mission to Stop Breaches.

Within the Content Research and Integration team (CRI), we develop innovative capabilities to detect suspicious or malicious behavior on customer endpoint devices. Our goal is to enable the sensor to autonomously identify and stop the bad guys where possible, and to provide useful visibility and guidance to security analysts when new previously unknown adversary activity occurs. We research attacker behavior to understand their tools and techniques, and we build the capabilities to detect and prevent their malicious activity. Our detection strategies are primarily performed directly on the endpoint, but can also execute in the cloud, and may also utilize a hybrid approach combining aspects of both environments.  This ability to leverage a variety of tools across the CrowdStrike stack allow us to accomplish our detection goals while balancing local resource utilization and false positives for our customers.

As a Windows Kernel Sensor engineer within the CRI Windows team you will be focused on the research and development of sensor capabilities to provide visibility and detection support for attack techniques across supported Windows OS versions. You’ll work collaboratively to implement detection logic within the Falcon sensor which includes both user-mode and kernel-mode components that together observe system activity, recognize malicious behavior, provide on-box prevention and remediation capabilities, and send relevant security related telemetry to the Falcon Cloud. You’ll help find creative and resourceful ways to detect Windows specific threats while also helping to develop cross platform features that leverage telemetry from common OS subsystems such as file system, memory, process, and network activity. You’ll get exposure to both user-mode and kernel-mode coding practices.

As a Senior Engineer, you’ll function as a key resource and subject matter expert for other engineers within the team and across the group.  You’ll collaborate with various other teams as you drive your own initiatives and assist with other projects. You’ll be expected to make significant contributions from the initial concept phase through design, implementation, release, and bugtail/support. We're looking for smart people who want to be challenged and take ownership of what they build.

Location: The role is open in Germany, Romania, Spain, Uk, Ireland, Italy, Denmark, Israel remote.

What You'll Do:

  • Design and build detection logic and systems leveraged across teams within CrowdStrike to detect cyber attackers and stop breaches.

  • Extend our existing codebase and test suites utilizing C++, Python, and other tools as appropriate.

  • Brainstorm, define, and build collaboratively across multiple teams.

  • Build elegant, robust, and reliable solutions for complex technical problems.

  • Obsess about learning, and champion the newest technologies & tricks with others, raising the technical IQ of the team.

  • Deliver and accept feedback with grace and courtesy.

  • Troubleshoot issues within the product when necessary, assisting customer support.

  • Leverage your understanding of engineering best practices, including topics like secure coding, testing paradigms, effective peer code reviews, logging, and resilient architecture patterns, to ensure that our code is clean.

  • Be an energetic ‘self-starter’ who is empowered to take ownership and be accountable for deliverables, both individually and when leading a team.

What You'll Need:

  • 8+ years of experience designing, building, and delivering high-quality software in C/C++

  • In-depth knowledge of Windows kernel internals, security features, and low-level system programming, APIs and design

  • Prior experience working with low-level code, such as OS kernel, firmware or device drivers.

  • Team player – able to lead, mentor, communicate, collaborate, and work effectively in a globally distributed team

Preferred Qualifications:

  • Prior security experience, particularly in exploit and vulnerability analysis.

  • Understanding of kernel-mode and multi-threaded concurrent systems development in any of our supported platforms, with an interest to grow skills in all of them.

  • Prior development or testing experience with python.

  • Prior experience delivering software via agile processes.

#LI-AR1

#LI-BP

#LI-Remote

Benefits of Working at CrowdStrike:

  • Remote-first culture

  • Market leader in compensation and equity awards with option to participate in ESPP in eligible countries

  • Competitive vacation and flexible working arrangements

  • Physical and mental wellness programs 

  • Paid parental leave, including adoption 

  • A variety of professional development and mentorship opportunities

  • Access to CrowdStrike University, LinkedIn Learning and Jhanna

  • Offices with stocked kitchens when you need to fuel innovation and collaboration

  • Birthday time-off in your local country

  • Work with people who are passionate in our mission and Great Place to Work certified across the globe

CrowdStrike is proud to be an equal opportunity and affirmative action employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  0  0  0

Tags: Agile APIs C Cloud CrowdStrike Exploit Linux MacOS Python Windows

Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flex vacation Parental leave Wellness

Regions: Remote/Anywhere Europe
Country: Germany

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.