Professional Services Intern - Incident Response - Summer 2025 (Remote)

​​#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We’re looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.

Job Title: Professional Services Intern - Incident Response (Summer 2025)

Locations: UK - London/Remote or Ireland/Remote

Start Date: 2nd June 2025

End Date: 22nd August 2025

Location: Fully Remote but must be based in UK / Ireland

About the Role:

The Professional Services Internship programme is fully remote and requires no travel. However, interns are invited to work from the CrowdStrike office located closest to their remote location, and typically will travel to London at least three times during the Summer to meet the wider team. You will not be able to work outside of the UK / Ireland during this internship.

What You'll Do:

The CrowdStrike Services Internship Programme is a 12-week full-time summer internship that provides individuals with experience across all major aspects of the CrowdStrike Services business, with a focus on Incident Response. 

After completing this programme, candidates will have experience in the following areas:

Infrastructure 

• Networking Fundamentals 

• Active Directory and Enterprise Network Fundamentals

CrowdStrike Tools 

• Falcon Endpoint Protection Platform (EPP) 

• Falcon Forensics Collector (FFC)

Forensics and Triage 

• Windows and Linux Disk Forensics (X-Ways Forensics and Magnet AXIOM)

• Forensic Analysis via Supertimelining (Plaso/log2timeline)

• Log Analysis

• Cloud forensics:

  • Amazon Web Services (AWS)

  • Microsoft Azure

Proactive Services 

• Red Team Operations

• Tabletop Exercises 

• Cybersecurity Maturity Assessments

• Compromise Assessments

Project Management and Reporting 

• Incident Response Reporting 

• Client Communication and Management 

• Handling complex incidents, including those involving ransomware and sophisticated nation state adversaries

What You’ll Need:

• You must be working towards a BA/BSc/BEng or MA/MSci/MEng undergraduate degree in Cybersecurity, Computer Forensics, Computer Science, Computer Systems Engineering, Electronic & Electrical Engineering, Mathematics, Information Security, Information Systems, Information Assurance, Information Security Management, Intelligence Studies, Data Science or any other related field. Applicants will be considered from courses other than this example list where applicable experience and aptitude is demonstrated.

• You must be in the penultimate year of your undergraduate programme, i.e. your:

  • Second year of a three-year Bachelor’s programme;

  • Third year of a four-year year in industry (“sandwich”) programme; or

  • Third year of a four-year integrated Master’s undergraduate programme.

• This will mean that you should be scheduled to graduate during the Summer of 2026 or December 2025.

• Successful applicants will join the UK Incident Response (IR) team in a remote position. The team operates a “hybrid” (predominantly remote) model, combining four days per week of remote work with one day per week in our East London office near Shoreditch. Whilst you do not need to be based in the Greater London area, successful applicants will be invited to travel to London approximately once every four weeks (at CrowdStrike’s expense) to meet and collaborate with the team. This is, of course, subject to local health measures.

• You must be eligible to work in the UK.

• All employment offers, including for interns, are subject to a full background check.

Bonus Points:

Successful candidates will have experience in one or more of the following areas: 

• Have an investigative mindset and a desire to find and stop evil 

• Keep up with the latest vulnerabilities and breaches 

• Be self-motivated and actively seek opportunities for growth 

• Desire to rapidly accelerate their skills 

• Crave new and innovative work 

• Be able to complete technical tasks with minimal supervision 

• Desire to develop both technical and soft skills 

• Contribute to a positive work environment, and have a can-do attitude 

• Be seeking a career in cybersecurity and/or incident response 

• Bring a willingness to build, improve and innovate solutions to interesting technical problems

From a technical perspective, it is desired (but not required) that candidates: 

• Be comfortable with command-line interfaces (Windows, Linux, macOS, or any combination of those)

• Be familiar with scripting languages (PowerShell, Python 3, etc.)

• Be versed in forensic analysis methodology for Windows systems (Mac/Linux forensics knowledge is a plus) 

• Be acquainted with strategies and tools to rapidly analyse large sets of logs (such as Splunk, ELK, etc.)

What You Can Expect:

• Executive Speaker Series & Tech Talks

• A rigorous, world-leading incident response course built especially for our CrowdStrike Incident Response interns delivered by subject matter experts right across the division, covering the full incident response lifecycle, including:

  • Host forensic analysis

  • Cloud forensics

  • Large-scale log analysis techniques

  • Consulting and project management skills

  • Introductory red teaming to understand an attack from the adversary’s perspective

  • Introductory strategic consulting (table top exercises, maturity assessments, etc.)

  • The CrowdStrike Falcon platform

  • Specific tech talks on deployment, handling ransomware, etc.

  • The opportunity to work on a mock engagement run entirely by interns end to end

  • Much more!

• Fun socials (e.g. virtual trivia, escape rooms, etc.)

• Networking opportunities with fellow interns and CrowdStrikers

• Owning impactful individual projects that move the company forward

• Working alongside a diverse and global team

• Two assigned mentors, with continuous feedback and rapid support

• Access to our FalconFit Wellness Program and Employee Assistance Program

• Fun Slack channels (e.g. food, gaming, sports, pets, etc.)

• Paid bank holidays and pension contributions

• Work from home stipend to help with remote desk set up

#LI-Remote

#LI-HP1

CrowdStrike is proud to be an equal opportunity and affirmative action employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.