Vulnerability Researcher (Remote, IND)

6 Months ago • 6-12 Years • Cyber Security

Job Summary

Job Description

Vulnerability Researcher role requires 6-12 years experience in analyzing, interpreting, and integrating vulnerability data from multiple sources. Must have strong programming and scripting skills, understanding of common vulnerability classes, and in-depth knowledge of security and network fundamentals.
Must have:
  • Vulnerability Data
  • Scripting Skills
  • Security Fundamentals
  • Network Protocols
Good to have:
  • Configuration Assessment
  • CIS Benchmarks
  • Regulatory Frameworks
  • Vulnerability Signatures
Perks:
  • Remote-first Culture
  • Market Leader Compensation

Job Details

About the job

#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We’re looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.

The Product

Falcon Exposure Management is the product which proactively reduces intrusion risk by providing the unified, AI-powered vulnerability prioritization and complete attack surface visibility.

Within Exposure management, Configuration Assessment allows you to assess your assets’ configuration settings against user-customizable CIS Benchmarks (a comprehensive set of prescriptive best practice standards), whether for compliance objectives or up-leveled security

Find Out More About Falcon Exposure Management

https://www.crowdstrike.com/platform/falcon-exposure-management/

About The Role

This role will be looking for information about various kinds of security vulnerabilities, known or unknown, including zero day vulnerabilities and enriching the CS security vulnerability detection database. The person will be required to gather the data, analyze the data, identify its criticality, and also automate simple tasks. He/ she will also be responsible for troubleshooting issues with current data and making enhancements.

What You'll Do

  • Collecting, analyzing, interpreting, evaluating, and integrating vulnerability data from multiple sources to update existing product
  • Understanding of common vulnerability classes and exploitation techniques
  • Actively investigate the latest in security vulnerabilities, advisories, incidents, and provide insights (sources like, Microsoft, Oracle, etc)
  • Troubleshooting security vulnerability issues/ gaps that arise
  • Vulnerability data discovery and validation (Data efficacy & Accuracy)
  • Develop, test and modify custom scripts for vulnerability content
  • Manually/Automate analyzing new CVE information published
  • Handle Customer escalations, to identify False-Positive & False-Negative
  • Other projects as assigned

What You'll Need

  • 6-12 years of relevant experience
  • Programming/scripting knowledge for automating day to day tasks – Python/ Perl, Golang.
  • Good understanding of vulnerabilities reported by various sources and their types.
  • Platform knowledge (ex: Windows system concepts like registry, files, services, etc)
  • In-depth knowledge of both security and network fundamentals, such as cryptography, authentication, access control, and network protocols (TCP/IP, UDP, DNS, HTTP, etc.). Understanding the security implications and potential vulnerabilities associated with these concepts
  • Research mindset, has a hold on where to look for relevant information pertaining to reported vulnerabilities.
  • Ability to work independently and in a team environment
  • Excellent oral, written, and interpersonal communication skills, with the ability to effectively convey complex technical concepts and interact with customers and team members alike
  • Provide influential insights across multiple teams

Bonus Points

  • Knowledge of Configuration Assessment and Compliance domain
  • Good understanding of CIS benchmarks and DISA STIGs
  • Good knowledge on regulatory frameworks like PCI, SOX, FISMA, HIPAA, ISO NERC, NIST etc will be an added advantage.
  • Knowledge of Vulnerability/exploit research and creating signatures for the same
  • Good understanding of file formats
  • Knowledge about IDS, IPS (Vulnerability Signatures)
  • Platform knowledge of one or more of non-windows (like Linux Distros, macOS)
  • Prior experience working with Nessus, Qualys, Rapid 7, Tripwire etc
  • Knowledge of NIST and OWASP is big plus
  • Ability to communicate, collaborate, and work effectively in a globally distributed team
  • Experience in Leading projects or Research initiatives
  • Experience/Exposure in SecOps domain is a plus
  • Experience/Exposure with Golang is a plus

Benefits Of Working At CrowdStrike

  • Remote-first culture
  • Market leader in compensation and equity awards with option to participate in ESPP in eligible countries
  • Competitive vacation and flexible working arrangements
  • Physical and mental wellness programs
  • Paid parental leave, including adoption
  • A variety of professional development and mentorship opportunities
  • Access to CrowdStrike University, LinkedIn Learning and Jhanna
  • Offices with stocked kitchens when you need to fuel innovation and collaboration
  • Birthday time-off in your local country
  • Work with people who are passionate in our mission and Great Place to Work certified across the globe

We are committed to fostering a culture of belonging where everyone feels seen, heard, valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.

CrowdStrike is committed to maintaining an environment of Equal Opportunity and Affirmative Action. If you need reasonable accommodation to access the information provided on this website, please contact Recruiting@crowdstrike.com , for further assistance.

Similar Jobs

Nagarro - Consultant Cyber Security (m/f/d)

Nagarro

Germany (Hybrid)
2 Months ago
Marvell India - Security Vulnerability Management Professional

Marvell India

Hyderabad, Telangana, India (On-Site)
5 Months ago
Aryaka - Member of Technical Staff - QA Security

Aryaka

Bengaluru, Karnataka, India (On-Site)
5 Months ago
Zones - SOC Analyst L2

Zones

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Avathon - DevOps Engineer

Avathon

Bengaluru, Karnataka, India (On-Site)
4 Months ago
PwC - IN-Manager_IA_Internal Audit Services_Advisory_Kolkata

PwC

Kolkata, West Bengal, India (On-Site)
4 Months ago
Condé Nast Technology Lab - Application Security - Engineer IV

Condé Nast Technology Lab

Bengaluru, Karnataka, India (Hybrid)
5 Months ago
Marvell - Security Vulnerability Management Professional

Marvell

Hyderabad, Telangana, India (On-Site)
6579 Years ago
Palo Alto Networks - Presales, Prisma Cloud Solutions Architect, Majors

Palo Alto Networks

Chicago, Illinois, United States (Remote)
3 Months ago
PwC - Associate - IT Audit

PwC

Karachi, Sindh, Pakistan (On-Site)
4 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

PwC - Application Security Manager

PwC

Makati, Metro Manila, Philippines (On-Site)
4 Months ago
Avathon - DevOps Engineer

Avathon

Bengaluru, Karnataka, India (On-Site)
4 Months ago
Every matrix - Application Security Engineer

Every matrix

Bucharest, Bucharest, Romania (Hybrid)
1 Month ago
Brightline - Information Systems Security Engineer

Brightline

Ashburn, Virginia, United States (On-Site)
1 Month ago
Scopely - Principal Security Engineer

Scopely

Barcelona, Catalonia, Spain (Hybrid)
3 Months ago
Anavation - Information Security Engineer

Anavation

Reston, Virginia, United States (On-Site)
4 Months ago
SparkCognition - DevOps Engineer

SparkCognition

Bengaluru, Karnataka, India (On-Site)
5 Months ago
Accurate - Information Security Engineer

Accurate

Hyderabad, Telangana, India (Hybrid)
4 Months ago
Okta - Site Reliability Engineer, Kubernetes

Okta

Bengaluru, Karnataka, India (Hybrid)
4 Months ago
Klüber Lubrication - Vulnerability Analyst (F/M/D)

Klüber Lubrication

Bengaluru, Karnataka, India (Hybrid)
5 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Pune, Maharashtra, India

Adept Global - 3D Geometry Engineer

Adept Global

Bengaluru, Karnataka, India (On-Site)
5 Months ago
CME Group - QA Engineer III

CME Group

Bengaluru, Karnataka, India (Hybrid)
4 Months ago
PwC - IN_Senior Associate_ SI Expert _Utility Transformation  _Advisory_Gurgaon

PwC

Gurugram, Haryana, India (On-Site)
3 Months ago
Mott MacDonald - Senior Pipelines Engineer

Mott MacDonald

Mumbai, Maharashtra, India (On-Site)
3 Months ago
Paytm - Product Management - Senior/Group Product Manager - Paytm Ads

Paytm

Bengaluru, Karnataka, India (On-Site)
4 Months ago
Trek - UI Engineer

Trek

Haryana, India (Hybrid)
4 Months ago
Zeta - Software Development Engineer II - iOS

Zeta

Bengaluru, Karnataka, India (On-Site)
4 Months ago
PhonePe - Associate Manager - Life Insurance

PhonePe

Pune, Maharashtra, India (On-Site)
3 Months ago
Luxoft - Senior Mobile QA Automation

Luxoft

Pune, Maharashtra, India (On-Site)
3 Months ago
PwC - IN_Senior Manager _Tax Tech Sales_ Tax Technology_TRS_ Bangalore

PwC

Bengaluru, Karnataka, India (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Scopely - Sr. Manager, Security Risk Management

Scopely

Lisbon, Lisbon, Portugal (Remote)
3 Months ago
Saviynt - Consultant, Professional Services (EMEA Region)

Saviynt

Bengaluru, Karnataka, India (Hybrid)
4 Months ago
PwC - Management Consulting-Finance-Associate2-Shanghai

PwC

Shanghai, Shanghai, China (On-Site)
4 Months ago
ION - Markets Platform Security Engineer - US

ION

Toronto, Ontario, Canada (On-Site)
4 Months ago
PwC - SRC_FedReg_Senior Associate

PwC

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Microsoft - Software Engineer

Microsoft

Reston, Virginia, United States (On-Site)
1 Month ago
PwC - Azure Senior Cloud Architect | Alliances, Technology Consulting

PwC

Dublin, County Dublin, Ireland (On-Site)
4 Months ago
PwC - IN-Associate _Business Analyst _Citizen Services _Advisory _Chennai

PwC

Chennai, Tamil Nadu, India (On-Site)
4 Months ago
PwC - IT Audit / IT Consultant

PwC

Phnom Penh, Phnom Penh, Cambodia (On-Site)
4 Months ago
PwC - IN-Senior Associate__SAP GRC_ITRA_Advisory_  Gurgaon/Mumbai/Bangalore

PwC

Gurugram, Haryana, India (On-Site)
4 Months ago

Get notifed when new similar jobs are uploaded

About The Company

CrowdStrike (Nasdaq: CRWD), a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity and data.


Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities.


Purpose-built in the cloud with a single lightweight-agent architecture, the Falcon platform delivers rapid and scalable deployment, superior protection and performance, reduced complexity and immediate time-to-value.


CrowdStrike: We stop breaches.

Get notified when new jobs are added by CrowdStrike

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug