Manager, Threat Research

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn't changed — we're here to stop breaches, and we've redefined modern security with the world's most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We're also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We're always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role:
The CrowdStrike Malware Research Center is the core of Falcon's malware detection and response capabilities. The team has a focus on understanding the threat landscape and sets the target for what Falcon should be identifying and preventing. Additionally, the MRC is responsible for understanding our capabilities, and mapping how well ourmachine learning and behavioral protection capabilities are doing against those threats. Where there is a gap, the MRC takes action to improve our detection stance, and improve our overall protection story. There are many parts of CrowdStrike working towards protecting customer environments, and the MRC works across all of them to ensure we are on target and providing the best protection for our current Threat landscape.
 

Threat Research Team:

Leading the charge for understanding the activity of malware today is the Threat Research team. With a focus on malware research, the primary role of the team is to understand relevant threats and techniques used in malware that is threatening our customer's business. The challenge is the enormous scale of malware today and sheer number of samples required to be addressed. This takes a more creative approach than traditional Anti-Virus research, focusing on one sample at a time. The modern threat lab requires an economy of scale through automation and machine learning to allow people to focus on new learnings, and let systems continue to identify malware based on what
the team has learned.
 

What You'll Do:

• With a challenging role comes the requirement for a skilled manager with a background in threat research and reverse engineering.

• Leading a team of threat researchers requires solid people managing skills for helping grow the team and supporting them in being successful in the organization.

• Additionally, the team's manager must have a solid understanding of the technical requirements of the positions reporting to them in order to provide proper guidance and help grow the team's technical skills.

What You'll Need:

• The technical Manager position in CrowdStrike is not defined as a progression from an individual contributor. It is a unique career path focusing on excellence in supporting the business through scaling out their technical expertise while also focusing on supporting a team of candidates from new college hires to senior engineers.

• While the primary focus is team leadership and mentorship, the role requires periodic hands-on technical contribution during critical phases, proof-of-concept development, and when mentoring team members through complex analysis challenges.

• Solid interpersonal skills are a must, along with a strong sense of empathy, to help guide employees through understanding where they are in their career and technical path.

• A proven background in advanced reverse engineering on file-based threats is required.

• A good working knowledge of malware based automation workflows and techniques is required.

• Demonstrated experience building scalable automation pipelines for malware analysis, including integration with sandbox environments, YARA rule generation, and threat intelligence platforms.

• The Threat Research team is supported by an engineering team, but proof of concept automation is produced by researchers. Showing competence handing off research to engineering to produce results is required.

• Bachelors or Masters in Computer Science or comparable field required.

• 12+ years experience in the threat research field with a focus on malware analysis required. Prior people management experience leading technical teams is required.

• Strong interpersonal communications skills required, with the ability to demonstrate leadership and team building expertise required.

• Experience working cross-functionally with Engineering, Product, and Detection teams to translate research findings into production capabilities.

Bonus Points:

• Experience leveraging Generative AI and Large Language Models for threat research automation workflows, including malware analysis, report generation, and threat intelligence synthesis

• Proven ability to design and implement AI-powered automation solutions that enhance team productivity and scale threat research capabilities

• Understanding of prompt engineering, AI model integration, and the application of GenAI tools in cybersecurity contexts

• Additional reverse engineering around file-less threats, exploits, and other attack techniques are desirable

#LI-VJ1

#LI-SM1

#LI-Remote

Benefits of Working at CrowdStrike:

• Remote-friendly and flexible work culture

• Market leader in compensation and equity awards

• Comprehensive physical and mental wellness programs

• Competitive vacation and holidays for recharge

• Paid parental and adoption leaves

• Professional development opportunities for all employees regardless of level or role

• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections

• Vibrant office culture with world class amenities

• Great Place to Work Certified across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at for further assistance.