Software Engineer Intern- Engine and Content Development (Summer 2020)

University Minneapolis, Minnesota


About CrowdStrike

At CrowdStrike we’re on a mission - to stop breaches. Our groundbreaking technology, services delivery, and intelligence gathering together with our innovations in machine learning and behavioral-based detection, allow our customers to not only defend themselves, but do so in a future-proof manner. We’ve earned numerous honors and top rankings for our technology, organization and people – clearly confirming our industry leadership and our special culture driving it. We also offer flexible work arrangements to help our people manage their personal and professional lives in a way that works for them. So if you’re ready to work on unrivaled technology where your desire to be part of a collaborative team is met with a laser-focused mission to stop breaches and protect people globally, let’s talk.

About the Role

CrowdStrike is looking for a software engineering intern to join our growing Engine and Content Development (ECD) team, with a focus on endpoint/sensor development. This position will be based in our Minneapolis office.

The Engine and Content Development team implements strategies and processes that detect suspicious or malicious behavior. Sometimes these detection strategies are performed directly on the endpoint, and sometimes they’re evaluated in the cloud. We leverage a variety of techniques to accomplish this while also minimizing false positives. Our goal is to stop the bad guys automatically where possible, and to provide visibility and guidance to security analysts so they can effectively identify adversaries. ECD is a central part of CrowdStrike’s mission - “We Stop Breaches." We're looking for smart people who want to be challenged and take ownership of what they build, and are interested in researching and understanding attacker behavior and building capabilities to detect and stop attacks. 

As an engineer in the ECD team, you’ll help develop creative and resourceful ways to detect threats on Windows, Mac, and/or Linux systems. You’ll work collaboratively to implement threat detections in the Falcon Sensor, a small kernel-level module that observes system activity and recognizes malicious behavior, then provides on-box prevention capability and remote telemetry to the Falcon cloud. Features frequently cut across most core OS subsystems such as file system, memory and process, and networking. You’ll get exposure to both user-level and kernel-level coding practices. Many features are built utilizing shared components across multiple platforms. You’ll collaborate with multiple teams within engineering.

You will:

  • Design and build detection logic and systems that's leveraged by other teams within CrowdStrike to detect cyber attackers and stop breaches.
  • Brainstorm, define, and build collaboratively with members across multiple teams.
  • Be unafraid to ask questions and eager to follow the best solution
  • Build elegant solutions for complex technical problems in the native languages appropriate for the host OS (generally C/C++).
  • Read code in the multiple programming languages in use in our environment (C/C++, python, and unix/windows shell scripting, among others).
  • Focus on continual learning, raising the bar for both yourself and your teammates.
  • Troubleshoot issues with the product as reported by customers, Security Response, or Product Support.
  • Able to share and receive constructive feedback with courtesy.

What You’ll Need:

  • Able to produce high quality software and can demonstrate that capability, be it through job experience, schoolwork, or contributions to community projects.
  • Development experience with any of: Python, C/C++, Java, or Go
  • Exposure to OS internals in Linux, Windows, or macOS, such as networking, process management, file systems, and multi-threaded development.
  • Able to communicate, collaborate, and work effectively in a distributed team.
  • Education: Actively pursuing an undergraduate or MS degree full-time with planned graduation date of August 2020 or later.

Bonus Points:

  • Prior computer and/or network security and SIEM experience.
  • Low-level (e.g. driver, kernel, firmware) experience.
  • Exposure to kernel development on any of Windows, macOS, and Linux, with an interest in growing skills in other platforms.
  • Experience responding to security events, including front-line analysis and escalation, on hacktivist, cybercrime, and APT activity.
  • Technical security certifications or security-related academic background, such as coursework, projects, or capture-the-flag competitions, will be a plus.

Summer Internship Program Experience Teaser:

  • Access to Intern Executive Speaker Series
  • Development Workshops
  • Fun social and give back events
  • Access to company events
  • Assigned Mentor
  • Continuous feedback
  • Paid Holidays and 401k
  • Stocked fridges, coffee, soda, and lots of treats

We are committed to building an inclusive culture of belonging that not only embraces the diversity of our people but also reflects the diversity of the communities in which we work and the customers we serve. We know that the happiest and highest performing teams include people with diverse perspectives and ways of solving problems so we strive to attract and retain talent from all backgrounds and create workplaces where everyone feels empowered to bring their full, authentic selves to work. 

CrowdStrike is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.