Security Engineer - Bug Bounty (Remote)

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role:

At CrowdStrike our Bug Bounty Programs are a collaboration with third party researchers where researchers are rewarded for discovering security bugs. You will be responsible for leading and executing these programs including, but not limited to triaging, tracking, and managing researcher communications. This will include working with external bug bounty researchers and internal stakeholders across various business units.

Effective communication; both written and verbal is key to this role. To be successful in this position you must possess strong technical skills to understand security related issues, but also a strong business acumen to help improve the overall program and communicate effectively to all parties. You will also need to stay organized and be able to report the triage and remediation status of multiple reports to management.

What You’ll Do:

• Lead, manage, and execute CrowdStrike bug bounty programs

• Manage triage of bug bounty reports

• Communicate effectively and professionally with third-party bug bounty researchers

• Collaborate with the security teams for further vulnerability analysis

• Collaborate with engineers to track vulnerability through resolution

What You’ll Need:

Required:

• Strong technical expertise in security vulnerabilities and the ability to reproduce technical issues

• Understanding of application security principles, best practices and common web security vulnerabilities

• Familiarity with common network protocols and standards

• Familiarity with cloud environments like Amazon Web Services

• Familiarity with application security testing processes and tools

• Excellent written and verbal communication skills

Preferred:

• Experience triaging bounty reports or support tickets

• Familiarity with EDR, such as CrowdStrike Falcon

• Experience automating processes

• Experience building GenAI agents

• Practical penetration testing experience

• Practical software development experience

• Application security related certifications

#LI-Remote

#LI-AO1

Benefits of Working at CrowdStrike:

• Remote-friendly and flexible work culture

• Market leader in compensation and equity awards

• Comprehensive physical and mental wellness programs 

• Competitive vacation and holidays for recharge  

• Paid parental and adoption leaves

• Professional development opportunities for all employees regardless of level or role

• Employee Resource Groups, geographic neighbourhood groups and volunteer opportunities to build connections

• Vibrant office culture with world class amenities

• Great Place to Work Certified™ across the globe

Right to Work