Application Security Engineer

Full Time
Seattle, WA
Areas of Interest: Software Assurance and Security Engineering
report a problem

Your dream job at CrowdStrike is waiting
Join the company now backed by Google Capital 

Help us protect CrowdStrike and its customers from the most advanced threats!  CrowdStrike’s Product Security team breaks the mold of traditional internal security and focuses on active threats to CrowdStrike’s products.  As an Application Security Engineer, you will perform technical security assessments, code reviews, and security testing to highlight risk and help engineering teams improve the overall security posture of our platform.

Essential Duties and Responsibilities

  • Develop threat models and test plans for new and existing platform components
  • Create tools to help test and monitor system security posture
  • Test technical system components from module subsystems to entire frameworks
  • Develop system design and coding best practices for engineering teams

Key Qualifications

  • Application security testing experience
  • Programing knowledge in at least 2 languages (C/C++, Go, Python, Ruby, Java, PHP, Perl, others)
  • Protocol knowledge of TCP/IP, HTTP, applied Cryptography, others
  • Exposure to Windows, OSX, and Linux operating systems


  • Familiarity with tools such as Wireshark, Kali, Postman, BurpSuite, Nmap, Metasploit,others
  • Strong debugging skills. Ability to spot design flaws, race conditions, performance bottlenecks in complex architectures and simple misconfigurations.
  • Experience testing Restful APIs
  • Familiarity with secure coding concepts
  • You’re a clear thinker and efficient communicator


  • OSCP certified
  • Other technical security certifications or academic background a plus.

Why CrowdStrike 

CrowdStrike is a true big data security company ­ backed with investments from Google Capital, Accel Partners, Warburg Pincus and Rackspace, staffed with technology and security industry leaders, employing cutting edge technologies and security best practices in our a highly scalable cloud based platform, supporting millions of events per second originating in countries around the globe to deliver accurate and actionable information directly to our customers in real-time.

If you want a tech job working for a team with a mission, a mission to protect people, intellectual property, businesses and democracies from criminals and adversaries (vs. getting users to click links or find taxis), come work for CrowdStrike.

Locations: Irvine, Los Angeles, Sunnyvale, CA or Seattle, Kirkland, WA

External Recruiting Agencies/Vendors: CrowdStrike does not accept unsolicited resumes from any external agency. Unsolicited resumes submitted by agencies to CrowdStrike will become the property of CrowdStrike and may be contacted and engaged with directly by CrowdStrike. CrowdStrike has not agreed to pay placement or any other fee to companies who have not been specifically retained to conduct a candidate search or for any unsolicited resume.

Share this job:


CrowdStrike™ is a leading provider of next-generation endpoint protection, threat intelligence, and pre- and post incident response services. CrowdStrike Falcon is the first true Software as a Service (SaaS) based platform for next-generation endpoint protection that detects, prevents, and responds to attacks, at any stage - even malware-free intrusions. Falcon’s patented lightweight endpoint sensor can be deployed to over 100,000 endpoints in hours providing visibility into billions of events in real-time. CrowdStrike operates on a highly scalable subscription-based business model that allows customers the flexibility to use CrowdStrike-as-a-Service to multiply their security team’s effectiveness and expertise with 24/7 endpoint visibility, monitoring, and response.
Visit CrowdStrike's Social Media pages:
Company Industry: Computer & Network Security
Company Size: 201-500