Sr. Product Security Engineer, Application Security
2 weeks ago
About The Role:
Help us protect CrowdStrike and its customers from the most advanced threats by securing our applications. CrowdStrike’s Product Security team breaks the mold of traditional internal security, and focuses on active threats to CrowdStrike’s products. As an Application Security Engineer you will dig into web applications, find design and implementation flaws, help our product engineers fix defects, and play a role in shipping secure code. You’ll hunt for security defects and play a part in fixing those defects rather than just reporting them and hoping for the best. Additionally, you will be involved in cross-cutting projects to further harden internal systems and processes against active and emerging threats.
What You’ll Do:
Join engineering teams working on applications as a security expert and advisor, influencing the design and capabilities of our products
Create and maintain threat models to drive security decisions and minimize threat surface area
Review application source code, looking for security defects and risk
Attack applications throughout the Secure Development LifeCycle
Work with developers to help them understand defects, risks, design weaknesses, etc. and implement proven solutions
Build integrated tools and automation to make life easier for you, your team, and our engineering partners
Assist in responding to our bug bounty program, hunt for similar issues, and improve the security of our applications
We’re hiring this role at multiple levels, so we still want to hear from you even if you think you can’t do all of that – or if you can do more
What You’ll Need:
An understanding of how software products are created and shipped in Agile/DevOps like environments
Basic experience with threat modeling, especially using STRIDE
Some experience in code review for apps built with Go (Golang), Python, Rust, or JavaScript (emphasis on browser-side)
Knowledge of secure configuration of cloud-native and containerized apps in one or more Cloud environments (GCP, Azure, AWS)
Experience using and/or maintaining commercially available AppSec tools like SAST, DAST, IAST, and ASPM suites
An understanding of common software weaknesses that impact cloud and web applications (not just the OWASP Top 10) and experience in application penetration testing
Comfort with collaborating across technical teams: asking technical questions, challenging assumptions, getting or providing context for decisions, etc.
Bonus Points:
These skills are not required and/or we’re willing to teach them, but they are helpful.
Self-motivated to identify security problems and engage with teams to find solutions
Demonstrable experience developing/maintaining automation for application security tasks and defect identification
Example(s) of having a positive working relationship with product engineers (software product development experience is a huge bonus)
Knowledge of Docker and Kubernetes (k8s)
Experience with WebAssembly (WASM)
Engaged in providing security enhancements to open source projects
Education/Certifications:
Technical security certifications or academic background are a plus.
#LI-MF1
#LI-SF1
#LI-Remote
PandoLogic. Category:Technology, Keywords:Information Security Engineer, Location:AUSTIN, TX-78703-
Sr. Product Security Engineer
2 weeks ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:Help us protect the Security Cloud from the most advanced threats! As a Sr. Security Engineer in Product Security, you will work hand-in-hand as a Security Partner to product engineers designing and implementing new services across our various Product teams to ensure security is built-in from the start. This highly dynamic, hands-on role...
-
Sr. Product Security Engineer
3 days ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:Help us protect the Security Cloud from the most advanced threats! As a Sr. Security Engineer in Product Security, you will work hand-in-hand as a Security Partner to product engineers designing and implementing new services across our various Product teams to ensure security is built-in from the start. This highly dynamic, hands-on role...
-
Sr. Product Security Engineer
2 weeks ago
N/A, N/A, United States CrowdStrike, Inc. Full timeAbout the Role:Help us protect the Security Cloud from the most advanced threats! As a Sr. Security Engineer in Product Security, you will work hand-in-hand as a Security Partner to product engineers designing and implementing new services across our various Product teams to ensure security is built-in from the start. This highly dynamic, hands-on role...
-
Application Security Researcher
2 weeks ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:The CrowdStrike Cloud Content team is an integral part of the Content Product Group, tasked with the critical mission of safeguarding cloud environments through innovative detection and response capabilities. This specialized team comprises cloud security experts, researchers, and engineers in various time zones working in unison to ensure our...
-
Sr. Security Researcher
2 weeks ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:The CrowdStrike Cloud Content team is an integral part of the Content Product Group, tasked with the critical mission of safeguarding cloud environments through innovative detection and response capabilities. This specialized team comprises cloud security experts, researchers, and engineers in various time zones working in unison to ensure our...
-
Sr. Technical Product Manager, LogScale
4 days ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:Join us in revolutionizing the cybersecurity landscape as a Senior Product Manager at LogScale! We're on the lookout for a dynamic individual who thrives in the fast-paced world of technology, loves diving into complex data pipelines, and is passionate about shaping the future of security.As part of the LogScale Product Management team, you'll...
-
Sr. Technical Product Manager, LogScale
4 days ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:Join us in revolutionizing the cybersecurity landscape as a Senior Product Manager at LogScale! We're on the lookout for a dynamic individual who thrives in the fast-paced world of technology, loves diving into complex data pipelines, and is passionate about shaping the future of security.As part of the LogScale Product Management team, you'll...
-
Sr. Cloud Threat Detection Engineer
3 weeks ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:The CrowdStrike Cloud Content team is an integral part of the Content Product Group, tasked with the critical mission of safeguarding cloud environments through innovative detection and response capabilities. This specialized team comprises cloud security experts, researchers, and detection engineers in various time zones working in unison to...
-
Sr. Applications Analyst
6 days ago
n/a, United States Houston Methodist Full timeAt Houston Methodist, the Senior Application Analyst position is responsible for expert level support and configuration of assigned applications. The position entails assisting, training and supporting customers and junior analysts with the operation and administration of systems. The Sr. Application Analyst trains and mentors more junior analysts. The Sr....
-
Sr. Applications Analyst
6 days ago
n/a, United States Houston Methodist Full timeAt Houston Methodist, the Senior Application Analyst position is responsible for expert level support and configuration of assigned applications. The position entails assisting, training and supporting customers and junior analysts with the operation and administration of systems. The Sr. Application Analyst trains and mentors more junior analysts. The Sr....
-
Sr. Server Engineer
6 days ago
n/a, United States Houston Methodist Full timeAt Houston Methodist, the Senior (Sr.) Server Engineer is responsible for developing and executing test plans, installations, documentation support, training and vendor management for server-based products. Plans and manages initial deployments, provides third level support and vendor management for server based products. Plans, designs and recommends...
-
Senior Software Engineer with Security Clearance
1 month ago
N Charleston, United States Adapt Forward Full timePosition Description As a Sr Full Stack Developer, you will be a member of a development team that provides an application used for triaging active, cybersecurity incidents and facilitating rapid response for risk mitigation. You will be developing application features for the web-based application that we develop and support in a highly fluid...
-
Sr. Software Engineer
2 weeks ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:As our new senior software engineer in CrowdStrike, you’ll contribute to the LogScale application for observability, log management, and security events. As a member of the new US based engine team you will focus on the LogScale engine that makes LogScale scale by developing new features as well as improving existing functionality. This is a...
-
Sales Engineering
7 days ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:Are you ready for your next real security challenge? Are you passionate about helping organizations stop breaches using a platform that just works? If so, CrowdStrike is seeking a Sales Engineer with significant security expertise. You should be able to articulate how current security solutions are designed and deployed, and why they are...
-
Sr. Corporate Channel Manager
2 weeks ago
N/A, N/A, United States CrowdStrike, Inc. Full timeAbout the Role:CrowdStrike is seeking a Sr. Corporate Channel Manager to support and manage the growth and success of our Corporate Channel business in an aligned region. You will engage with CrowdStrike’s authorized partners to drive leads, and create campaigns for the Sales Managers in your assigned region. You will provide sales enablement and training...
-
Sr. Corporate Channel Manager
2 weeks ago
N/A, N/A, United States CrowdStrike, Inc. Full timeAbout the Role:CrowdStrike is seeking a Sr. Corporate Channel Manager to support and manage the growth and success of our Corporate Channel business in an aligned region. You will engage with CrowdStrike’s authorized partners to drive leads, and create campaigns for the Sales Managers in your assigned region. You will provide sales enablement and training...
-
Manager, Engineering
5 days ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:CrowdStrike Falcon Host is a two-component security product. One component is a “sensor”: a driver installed on client machines that observes system activity and recognizes malicious behavior, then provides on-box prevention capability and remote telemetry to the Falcon Host cloud. The sensor processes thousands of events per second to...
-
Federal Sales Engineer
7 days ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:Are you ready for your next real security challenge? Are you passionate about helping organizations stop breaches using a platform that just works? If so, CrowdStrike is seeking a Sales Engineer with significant security expertise. You should be able to articulate how current security solutions are designed and deployed, and why they are...
-
Federal Sales Engineer
5 days ago
N/A, United States CrowdStrike, Inc. Full timeAbout the Role:Are you ready for your next real security challenge? Are you passionate about helping organizations stop breaches using a platform that just works? If so, CrowdStrike is seeking a Sales Engineer with significant security expertise. You should be able to articulate how current security solutions are designed and deployed, and why they are...
-
Regional Sales Engineer, Amazon
2 weeks ago
N/A, N/A, United States CrowdStrike, Inc. Full timeAbout The Role:Are you ready for your next real security challenge? Are you passionate about helping organizations stop breaches using a platform that just works? If so, CrowdStrike is seeking a Senior Sales Engineer with significant security expertise. You will be managing our global customer relationship with Amazon for all existing business. You will...
