Vacancy expired!
About the Team
You'll be joining our MacOS Platform Sensor team supporting CrowdStrike's flagship Falcon endpoint protection platform. This team is responsible for core sensor components both in kernel and user space (C, Swift). We build and maintain the MacOS sensor, creating and/or building a platform for products and features like Zero Trust Assessment, On Sensor Machine Learning for Malware prevention, Falcon Insight, Falcon Prevent, Falcon Firewall Management, Falcon Device Control, etc.: products that empower customers with prevention, detection, and response capabilities.
About the Role
CrowdStrike Falcon Host is a two-component security product. One component is a "sensor": a driver installed on client machines that observes system activity and recognizes malicious behavior, then provides on-box prevention capability and remote telemetry to the Falcon Host cloud. The sensor processes thousands of events per second to provide deep visibility into operations on the endpoint, and performs rich correlation and computation to identify malicious events and blocks malicious activity.
The cloud component aggregates sensor telemetry for each customer's network, correlates malicious behavior across multiple machines, and presents our customers' operations teams with a prioritized summary of the threats detected in their environments.
This is a macOS Engineer role in the engineering team that delivers the sensor (lightweight agent) on macOS. Engineers in the team own design and development of core features on the platform. Features will cross-cut most core OS subsystems such as file system, memory, process, and networking. Many features are also built in a way that they will have shared components across Windows and Linux. The team operates under the Agile development principles and ships frequently.
Responsibilities