[Remote] Threat Hunter - GovCloud, 3rd Shift (Remote)

Note: The job is a remote job and is open to candidates in USA. CrowdStrike is a global leader in cybersecurity, focused on protecting organizations from breaches. The Threat Hunter role involves analyzing threat actor activity, identifying intrusions, and improving detection capabilities within the Falcon Host platform. Responsibilities • Protect our customer's networks by identifying and understanding intrusions using Falcon Endpoint data and the broader CrowdStrike product suite. • Analyze adversary activity and communicate those findings to customers as part of our fast-paced time sensitive mission to help stop breaches. • Undertake research to improve our detection capabilities and understand our adversaries. • Participate in active and passive threat hunting and gain fast-paced experience in dealing with threat actors. Skills • Ability to demonstrate experience in conventional networkhost-based intrusion analysis, digital forensics, or handling malware. • A strong grasp of how Windows, MacOs and Linux operating systems function. • Comfortability assessing cyber threat intelligence, open-source intelligence or industry reporting. • Knowledge of programming and scripting languages, in particular Python or Go. • A strong understanding of administrative tools and how adversaries may leverage them to live-off-the-land. • Familiarity with adversary techniques and attack lifecycles. (e.g: adversary progression through techniques found in the MITRE ATT&CK® matrix) • Willingness to work in a dynamic, fast-paced, and challenging role in an unconventional team environment. • Ability to communicate actionable threat intelligence to both technical and executive-level stakeholders. • Deeper knowledge of operating systems other than Windows (Linux, Mac) • Hands-on experience hunting for and/or responding to incidents associated with eCrime and/or Nation-state adversaries. • Experience in a security operations center or similar environment tracking threat actors or responding to incidents. • Experience publishing research papers at conferences or through other mediums (blogs, articles) • A good understanding of current and emerging threats and the ability to demonstrate practical knowledge of security research • Experience with logging platforms such as LogScale, Splunk, or Kibana and creating queries to identify suspicious activity Benefits • Remote-friendly and flexible work culture • Market leader in compensation and equity awards • Comprehensive physical and mental wellness programs • Competitive vacation and holidays for recharge • Paid parental and adoption leaves • Professional development opportunities for all employees regardless of level or role • Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections • Vibrant office culture with world class amenities • Great Place to Work Certified™ across the globe • Health insurance • 401k • Paid time off Company Overview • CrowdStrike is a cybersecurity technology firm that provides cloud-delivered protection for cloud workloads, identity, and data. It was founded in 2011, and is headquartered in Sunnyvale, California, USA, with a workforce of 5001-10000 employees. Its website is http://www.crowdstrike.com. Company H1B Sponsorship • CrowdStrike has a track record of offering H1B sponsorships, with 79 in 2025, 68 in 2024, 95 in 2023, 61 in 2022, 49 in 2021, 22 in 2020. Please note that this does not guarantee sponsorship for this specific role.