Sr. macOS Engineer - Content Research and Integration (Remote)

​​#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We’re looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.About the Team:The Content Research & Integration (CRI) is a team which resides within the Endpoint Protection area of CrowdStrike – an area which is responsible for enabling detections and preventions of malicious behaviors on the Falcon Platform. The CRI team is focused on strategic, forward leaning research into new Falcon Sensor capabilities to identify various tactics and techniques used by adversaries. We accomplish this by focusing on OS security/internals for all major supported platforms (Windows, Mac, and Linux) and exposing the right data to the sensor in a supportable and performant manner. Most of our projects involve months of research, planning, coordination, and implementation to be successful.  We currently support several key Falcon Sensor technologies that are leveraged by detection and response teams to increase telemetry, detections, and preventions on the platform.About the Role:CrowdStrike Falcon Host is a two-component security product. One component is a “sensor”: a driver installed on client machines that observes system activity and recognizes malicious behavior, then provides on-box prevention capability and remote telemetry to the Falcon Host cloud. The sensor processes thousands of events per second to provide deep visibility into operations on the endpoint, and performs rich correlation and computation to identify malicious events and blocks malicious activity.The cloud component aggregates sensor telemetry for each customer’s network, correlates malicious behavior across multiple machines, and presents our customers’ operations teams with a prioritized summary of the threats detected in their environments.In this role you will research techniques for detecting malicious activity occurring on macOS systems. Once researched you will develop them into production level solutions for deployment. This role requires a combination of deep understanding of macOS kernel and user space and a large amount of solution creativity. The role is a split of research and implementation working alongside a small and nimble group of engineers.What You'll Do:Research techniques for detecting malicious activity including some reversingImplement solutions with strict attention to performance and reliabilityClearly articulate thoughts & designs both upwards and downwardsTriage and resolve both internal and external facing issuesWhat You’ll Need:Knowledge of macOS Internals across multiple versionsFamiliarity and ideally experience with a large number of macOS FrameworksCan develop high-quality code in one and ideally more of the following languages: C/C++/ObjC/SwiftExperience developing enterprise software for distribution to large number of systems including CI, testing, release management and issue handling is a plusAble to communicate, collaborate, and work effectively in a distributed team#LI-Remote#LI-MD1#LI-WK1Benefits of Working at CrowdStrike:Remote-first cultureMarket leader in compensation and equity awardsCompetitive vacation and flexible working arrangements Comprehensive and inclusive health benefitsPhysical and mental wellness programsPaid parental leave, including adoption A variety of professional development and mentorship opportunitiesOffices with stocked kitchens when you need to fuel innovation and collaborationWe are committed to fostering a culture of belonging where everyone feels seen, heard, valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.CrowdStrike is committed to maintaining an environment of Equal Opportunity and Affirmative Action. If you need reasonable accommodation to access the information provided on this website, please contact Recruiting@crowdstrike.com​, for further assistance.CrowdStrike, Inc. is committed to fair and equitable compensation practices. The salary range for this position in the U.S. is $135,000 - $220,000 per year + bonus + equity + benefits. A candidate’s salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications and location.CrowdStrike participates in the E-Verify program.                 Notice of E-Verify Participation                Right to Work