Engineer II, Threat Detection - Windows (Hybrid)
$100k - $145kCrowdstrike
As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. We work on large scale distributed systems, processing almost 3 trillion events per day and this traffic is growing daily. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We're proud to work for a mission-driven company leveraging AI to transform the way we work. CrowdStrikers drive their careers through flexibility and autonomy while also being expected to contribute to a culture of responsible AI adoption, experimentation, and innovation. We use an AI-first mindset as a force multiplier to proactively and continuously accelerate execution, build expertise, uncover insights, and solve complex problems. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you. About the Role: The CrowdStrike Endpoint Protection (EPP) Content Response team is seeking an experienced and passionate professional to analyze intrusions, threat campaigns, and malware — and to drive efforts to mitigate them by implementing robust behavioral detection coverage on the Falcon sensor platform. The Content Response Team improves detection capability and efficiency through tactical analysis of ongoing attacks by criminal and nation-state actors impacting our customers, translating observed attacker behavior into high-fidelity endpoint detections deployed at global scale. The role requires independent work as well as the ability to collaborate across threat intelligence, engineering, and operational teams. You will be expected to take initiative identifying and solving detection gaps that directly protect our customers. You will be part of a cutting-edge threat detection team regularly facing off against sophisticated techniques and well-resourced adversaries. This role is hybrid, requiring 2-3 days per week on-site at one of the posted locations. What You'll Do: Analyze emerging threats, campaigns, intrusion data, and malware execution telemetry to identify detectable behaviors and coverage gaps Author and optimize behavioral detection rules (Indicators of Attack) targeting adversary techniques observed on Windows endpoints Query and analyze endpoint telemetry (process execution, file system, registry, memory, authentication events) to validate detection hypotheses and assess coverage Monitor detection precision metrics, investigate false positives, and tune detections to maintain high signal-to-noise ratios Manage detections through a structured lifecycle: development, validation, staged deployment, and production monitoring Collaborate with threat intelligence and incident response teams to prioritize detection development based on active threat campaigns What You’ll Need: Must be eligible for CJIS clearance (requires U.S. citizenship or Green Card/permanent resident status). Bachelor's degree in information security, computer science, or related field — or 4+ years of equivalent hands-on experience in detection engineering, threat analysis, or endpoint security Experience with endpoint detection platforms, EDR tooling, or detection-driven security workflows Proficiency in Windows OS internals and APIs (process creation, registry, file system, memory management, authentication subsystems) Experience with behavioral malware analysis, sandboxing, telemetry collection, and detectable behaviors from execution logs or Windows forensics Working knowledge of regular expressions and pattern-based detection authoring Ability to read and understand various programming languages and PowerShell; scripting proficiency in Python for automation and analysis Experience analyzing endpoint telemetry or host-based log data to identify malicious patterns Solid working knowledge of common adversary TTPs and the ability to translate threat intelligence into detection logic Ability to assess cyber threat intelligence, open-source intelligence, or partner reporting for actionable detection opportunities Passion for detection engineering, threat analysis, or security research, with the motivation to keep learning and growing Comfortable using AI-assisted tooling as a daily force multiplier, not just a novelty Energetic self-starter mentality with the ability to take ownership and be accountable for deliverables Clear written and verbal communication skills to drive triage, convey detection rationale, and align cross-functionally with both technical and executive-level stakeholders Proven experience utilizing AI technologies to enhance decision-making, streamline workflows and processes, improve efficiency and drive business outcomes. Bonus Points: Experience writing behavioral detection rules or signatures for an endpoint security product (IOA/IOC logic, behavioral engines, or equivalent) Experience with regex optimization or pattern matching in performance-sensitive contexts Familiarity with detection precision concepts: true/false positive analysis, disposition workflows, and tuning at scale Experience with detection content lifecycle management (development → testing → staged deployment → monitoring) Understanding of behavioral detection paradigms: process tree analysis, parent-child relationships, API call sequences, and living-off-the-land technique identification Familiarity with MITRE ATT&CK adversary tactics and techniques Experience in a security operations center or similar environment tracking threat actors and responding to incidents Experience building test environments, lab infrastructure, or automation to improve detection development workflows Working knowledge of agentic AI CLIs and skills for detection engineering workflows Contributions to the open-source community (GitHub, Stack Overflow, blogging) or published research (conferences, blogs, articles) #LI-DR1 This role will require the candidate to periodically undergo and pass additional background and fingerprint check(s) consistent with government customer requirements. Benefits of Working at CrowdStrike: Market leader in compensation and equity awards Comprehensive physical and mental wellness programs Competitive vacation and holidays for recharge Paid parental and adoption leaves Professional development opportunities for all employees regardless of level or role Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections Vibrant office culture with world class amenities Great Place to Work Certified™ across the globe CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program. CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements. If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at View email address on click.appcast.io for further assistance. Find out more about your rights as an applicant. CrowdStrike participates in the E-Verify program. Notice of E-Verify Participation Right to Work CrowdStrike, Inc. is committed to fair and equitable compensation practices. Placement within the pay range is dependent on a variety of factors including, but not limited to, relevant work experience, skills, certifications, job level, supervisory status, and location. The base salary range for this position for all U.S. candidates is $100,000 - $145,000 per year, with eligibility for bonuses, equity grants and a comprehensive benefits package that includes health insurance, 401k and paid time off. For detailed information about the U.S. benefits package, please click here. CrowdStrike was founded in 2011 to fix a fundamental problem: The sophisticated attacks that were forcing the world’s leading businesses into the headlines could not be solved with existing malware-based defenses. Founder George Kurtz realized that a brand new approach was needed — one that combines the most advanced endpoint protection with expert intelligence to pinpoint the adversaries perpetrating the attacks, not just the malware. There’s much more to the story of how Falcon has redefined endpoint protection but there’s only one thing to remember about CrowdStrike: We stop breaches.
$190k - $260k
...for implementing an Insider Threat program across Bloomberg, including... ...dynamic models focused on detecting anomalous user behavior and... ...Investigations team (SR&I) as a Detection Engineer! This person would enhance... ..., including analyzing Linux, Windows, and MacOS systems Comfort...WindowsTemporary workFor contractorsWork experience placementWork at office- ...Dev Ops Engineer II Location: Jersey City, NJ - Hybrid Contract: 6 Months Contract Pay Range: $70/hour on w2; The rate may be negotiable... ...of proven experience with Linux Administration, Windows Administration, and IIS Management. Deep...WindowsContract work
$125k - $165k
Title: Systems Engineer Location: Remote / Hybrid (On site-visits to the DMV location as required by contract... ..., compliance activities, and threat mitigation Monitor system performance... ...Experience with enterprise Linux and Windows server environments Experience supporting...WindowsFull timeContract workWork at officeRemote work- Gravity Engineering Services Pvt Ltd. is seeking a skilled cybersecurity professional to monitor security events and conduct vulnerability assessments. The ideal candidate will collaborate with teams to ensure compliance and develop security policies. This role requires...Suggested
- ...Job Title: DevOps Engineer II Location: Jersey City, NJ Duration: 6 Months Contract on W2 Description: DevOps Engineer II is... ...The ideal candidate will have experience with Linux and Windows server administration, AWS cloud services, CI/CD pipelines, automation...WindowsContract work
- LincolnIT is seeking a full time Level I/II MAC and PC Support Engineer in New York. The ideal candidate has 1+ years of hands-on experience with... ...and Macbook repairs, and is well-versed in both MAC and Windows operating systems. Responsibilities include providing phone...WindowsFull timeRemote work
- ...This role is for an Information Technologist II with “Next-Level Thinking” who is ready to... ...more years in deploying systems in a MS Windows-based environment. Three (3) or more years... ...2003/2008, MS Exchange, MS Forefront Threat Management Gateway (Forefront TMG), Share...WindowsTemporary workLocal areaRemote work
- ...lifecycle and collaborating with various teams. Candidates must have 8+ years of experience and strong proficiency in Windows management. The firm offers a hybrid work schedule alternating between onsite and remote work, as well as an excellent benefits package. #J-18808-...WindowsRemote work
- ...IT management company is looking for a Junior Project Engineer based in New York. This hybrid role focuses on onboarding new clients and executing technical... ...at least 6 months of IT experience, especially with Windows and Microsoft 365. The company emphasizes career...Windows
$45k
...Consulting, LLC. in Shrewsbury, PA is seeking an IT Support Specialist II to provide hands-on technical support for clients. This role... ...complex issues, mentoring Tier 1 technicians, and managing Windows Server environments. With a starting salary of $45,000/year, the...Windows$80k - $102k
...seeking a User Support Analyst in New York responsible for Level II technical hardware and software support. This role requires... ...degree, 2 years of experience in user support, and familiarity with Windows-based environments and telephony solutions. A compensation package...Windows- ...Provider based in New York is seeking a System Engineer with MSP experience to join their high-performing team. This hybrid role includes escalated support and project... ...troubleshooting complex issues. Strong skills in Windows Server, Active Directory, and networking are...Windows
- ...designing Azure environments with a focus on scalability and high availability, while supporting a hybrid infrastructure. Candidates should have strong skills in Windows Server and Azure services. The position offers a hybrid work schedule and requires AZ-104 certification...Windows
- ...Consulting is hiring for the position of Environmental Compliance Engineer II, responsible for supporting environmental compliance... ...environmental regulations, and the ability to work collaboratively in a hybrid environment. Join us to make a positive impact on various...
$95k - $125k
...technology company in New York City is seeking a Systems Engineer to provide Level 1 and 2 Help Desk Support for Windows and Mac devices. This role also involves core... ...and technical tools, comfortable working in a hybrid model where you work from home on Mondays and...WindowsWork from homeMonday to Friday- Position Name: Junior Project Engineer Reports to: Project Engineer Team Lead Location/Type: Hybrid - New York, New York Status: Exempt Atlas Technica’s mission is to... ..., Conditional Access) Entra ID (Azure AD), Windows Server, Active Directory, Group Policy File and...WindowsWork at office
- ...Position Name: Sr. Systems Engineer Reports to: Client Technology... ...Location/Type: New York, NY/Hybrid Onsite Atlas Technica's... .../ Desktop Support: Microsoft Windows, Microsoft Office, desktop, and... ...similar product for endpoint threat management Understanding of...WindowsFull timeWork at office
$104.92k - $153.88k
...financing across the country. Our Engineering and Analytics Team Members... ...Connect, Azure App Proxy, and hybrid identity integrations with on-premises... ...MFA, conditional access, and threat protection. Intermediate-to-advanced knowledge of Windows infrastructure (DNS, DHCP, GPOs...WindowsCasual workWork at officeRemote workWork from homeNight shiftWeekend work- ...Senior Systems Engineer - Messaging & Collaboration New York, NY (Hybrid, 3 days in office) Highly competitive compensation... ...messaging stack that spans both Windows and Linux environments, and you... ...sophisticated anti-spam and threat protection gateways (Proofpoint)...WindowsWork at office
$125k - $156k
...(SOC) team, the Security Engineer will be responsible for early and accurate detection, response and containment of threats directed against the environment... ...-scale customer-facing hybrid cloud environment and... ...multiple environments from, *nix/Windows operating systems, cloud...WindowsFull timeTemporary workLocal areaWorldwide$95k - $125k
...them. We are hiring a Systems Engineer in our New York City office. About... ...1 and 2 Help Desk Support for Windows and Mac devices, supporting... ...skills. This is a hybrid role. Work from home on Monday... ...components: (i) a base salary, (ii) annual cash bonus, and (iii)...WindowsRemote workWork from homeMonday to FridayDay shift- ...Management program to ensure we're detecting and mitigating... ...solutions in collaboration with engineering teams to address security concerns... ...technical background rooted in Windows Can maintain, support, and... ...Windows, macOS, and hybrid identity platforms Have demonstrated...Windows
- A leading technology firm is seeking a Client Support Administrator to provide helpdesk support and troubleshoot networking and application issues. This role requires a Bachelor’s degree or relevant experience, along with an Active Secret clearance. You will maintain client...Windows
- ...for a strong End User Support Engineer who will provide an exceptional... .... Location: New York NY (hybrid-4 days onsite), local Candidates... ...Office 365 management. Microsoft Windows 11 support. Mobile Device... ...Group Policy, DHCP, DNS, and IIS. Strong knowledge of Windows...WindowsWork at officeLocal areaRemote workWeekend work
$90k - $110k
...secure, and thriving. With the threat of cyber-attacks, and... ...in meeting highly qualified engineers for future opportunities as our... ...implementing, and maintaining our Windows-based systems and infrastructure... ...in working meetings Hybrid position – Based in NYC area,...WindowsWork experience placementWork at officeLocal areaRemote workWork from homeVisa sponsorshipShift workNight shift$124.5k - $182.5k
...Sr. Staff IT Systems Engineer The Sr. Staff IT Systems Engineer will... ...scalable and highly available Windows servers and Active Directory,... ...GPO Solid understanding of hybrid environments and sufficient... ...i) U.S. citizen or national, (ii) U.S. lawful, permanent resident...WindowsPermanent employmentWork experience placementWork at officeLocal area$120k
...SRE Virtual Desktop Operations Engineer - AVP. At Barclays, our... ...Considerable background in Windows Server, Windows 11 multi-session... ...infrastructure services to support hybrid and multi-cloud environments... ..., and other security threats, including protection of hardware...WindowsHourly payWork at office- ...replicate the complexity of modern hybrid IT/OT networks—helping... ...We’re seeking a Cybersecurity Engineer - Training Lab Developer to design... ...that simulate real‑world threats, vulnerabilities, and... ...VirtualBox, Hyper‑V), and Linux/Windows administration. Proficiency...WindowsTemporary workRemote work
$155k
...looking for a Cybersecurity Engineer to join our Corporate... ...controls across our hybrid infrastructure... ...: Vulnerability & Threat Management Conduct... ...monitoring and incident detection Develop custom Splunk... ...scripting and automation Windows Server administration...Windows- .../IT workforce certification requirements Windows Server 2019/2016/2012, Microsoft Exchange,... ...field Required Certifications IAT Level II baseline certification IAW DoD 8570.01-M (... ...Certified: Azure Administrator or Windows Server Hybrid Administrator CompTIA Server+ VMware...WindowsContract workImmediate startRelocation
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Engineer II, Threat Detection - Windows (Hybrid). Be the first to apply!


