#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We’re looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.About the Role:CrowdStrike is looking for a Senior-level subject matter expert on DPRK-based cyber threat actors who has significant experience conducting advanced research pertaining to DPRK-nexus APT activity. The ideal candidate will possess a solid understanding of threat intelligence, have strong open source (OSINT) research skills, and be interested in proactively collecting unique, timely, relevant, and actionable information related to DPRK threat actors.Successful candidates will be self-starting, action-oriented, and highly motivated. This position will require the candidate to track and collect information related to DPRK Targeted Intrusion (TI)/Advanced Persistent Threat (APT) actor tools, tradecraft, and techniques in a wide variety of environments, to include the deep and dark web.The mission is to leverage operational tradecraft along with subject matter expertise to identify, develop, and maintain unique sources of cyber threat intelligence information and enable threat analysis. It serves as an important support role to ongoing analysis of actors, adversaries, geopolitical developments, and transnational issues, and is instrumental in providing unique insight into finished Intelligence products used by CrowdStrike customers and stakeholders.To succeed, you must be an operational security (OPSEC)-savvy, detail-oriented problem solver, and have substantial experience driving concurrent projects and issues to completion with minimal direction. High-level working proficiency in Korean is required.What You'll Do:Collect information to answer established standing and ad hoc requirements related to DPRK-based targeted intrusion actors.Leverage advanced OSINT tradecraft to follow up on leads and identify DPRK-based APT threat actors and track them in various online communities.Identify current and emerging cyber threats and trends pertaining to the Korean Peninsula, including technical information.Create consistently clear, highly-contextualized internal reports of collected information in a way that enables robust analysis.Collaborate on analytical reports and threat estimates pertaining to DPRK APT topics.Employ secure virtual operational tradecraft methods and practices.What You'll Need (Required):Ability to perform comprehensive OSINT investigations using advanced Korean-language skills.Extensive experience navigating a wide variety of cyber threat actor environments, to include social media, hidden services and forums.High level of knowledge regarding DPRK-based APT groups.Practical knowledge of technical terminology, tools, and tactics employed by APT threat actors, particularly those used by DPRK-nexus actors.Ability to adapt quickly to changing environments and identify creative solutions to difficult problems and scenarios with persistence. Tenacity is key.Must be able to work effectively under tight deadlines with minimal guidance.Preferred:Understanding of the current geopolitical and transnational events and issues pertaining to DPRK and ROK.Additional background in Southeast Asia geopolitical issues and language capabilities including but not limited to Vietnamese, Malay, Indonesian, or Chinese.Prior experience performing online investigations using DomainTools, VirusTotal or similar tools is highly desired.Prior intelligence community, human intelligence (HUMINT), or cyber threat intelligence background highly preferred. Practical experience with virtual HUMINT is highly desirable.#LI-Remote#LI-AO1Benefits of Working at CrowdStrike:Remote-first cultureMarket leader in compensation and equity awardsCompetitive vacation and flexible working arrangements Comprehensive and inclusive health benefitsPhysical and mental wellness programsPaid parental leave, including adoption A variety of professional development and mentorship opportunitiesOffices with stocked kitchens when you need to fuel innovation and collaborationWe are committed to fostering a culture of belonging where everyone feels seen, heard, valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.CrowdStrike is committed to maintaining an environment of Equal Opportunity and Affirmative Action. If you need reasonable accommodation to access the information provided on this website, please contact Recruiting@crowdstrike.com, for further assistance.CrowdStrike participates in the E-Verify program. Notice of E-Verify ParticipationRight to WorkCrowdStrike, Inc. is committed to fair and equitable compensation practices. The base salary range for this position in the U.S. is $80,000 - $120,000 per year + variable/incentive compensation + equity + benefits. A candidate’s salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications and location.CrowdStrike Canada ULC is committed to fair and equitable compensation practices. The base salary range for this position in Canada is $70,000 - $120,000 CAD per year + variable/incentive compensation + equity + benefits. A candidate’s salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications and location.Expected Close Date of Job Posting is:02-12-2024
View Original Job Posting