Security Research Intern - Active Directory & Identity Security

Description du poste:

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn't changed - we're here to stop breaches, and we've redefined modern security with the world's most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We're also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We're always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Our University Recruiting program is dedicated to attracting and cultivating the future leaders of this industry. This program offers paid positions for students and recent grads, designed to provide exposure to work that makes an impact while being supported through a structured experience with seasoned professionals. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role:
CrowdStrike is looking for a motivated and curious Security Research Intern to join our research team with a focus on Active Directory (AD) and Entra ID security. This is a hands-on internship where you'll work to analyze AD and cloud identity attack techniques, contribute to detection development, and help protect organizations from identity-based threats.

What You'll Do
* Research Active Directory and Entra ID attack techniques including credential-based attacks, authentication protocol abuse, directory replication exploits, forged authentication token attacks, and identity privilege escalation paths
* Support the development of detection logic and behavioral indicators for identity-based threats
* Analyze threat actor TTPs (MITRE ATT&CK) related to identity, AD, and cloud identity abuse
* Document research findings in clear, concise technical write-ups
* Collaborate with detection engineers and threat intelligence analysts

What You'll Need
* Currently pursuing a Bachelor's degree in Computer Science or related field.
* Basic understanding of Active Directory concepts (domains, forests, GPOs, Kerberos, LDAP)
* Familiarity with at least one scripting language (Python, PowerShell, or Bash)
* Genuine curiosity about how attackers think and operate across on-prem and cloud environments

Bonus Points:
* CTF experience or personal security research projects
* Exposure to Windows internals or Active Directory administration
* Familiarity with the MITRE ATT&CK framework, including the cloud and identity matrices

#LI-CM1

What You Can Expect:
* Market leader in compensation and equity awards
* Paid holidays (including birthday holidays) and 401k matching (where applicable)
* Professional development opportunities including workshops, tech talks, and Executive Speaker Series
* Assigned mentors from across the company for continuous support and feedback
* Participation in companywide initiatives including FalconFIT, Wellness Programs, and Employee Assistance Program
* Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
* Vibrant office culture with world class amenities
* Ownership of impactful projects that move the company forward
* Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance