Director, Internal Threat Intelligence and Detection Engineering (Remote, Eastern & Central)
ONUM
As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.
About the Role:
CrowdStrike is seeking a Director to lead our Internal Threat Intelligence and Detection Engineering (TIDE) organization within CrowdStrike's Corporate Cybersecurity team. This is a pivotal leadership role focused on protecting CrowdStrike's enterprise infrastructure, product environments, and corporate assets from sophisticated nation-state actors, eCrime adversaries, and targeted intrusion campaigns. As the TIDE Director, you will lead elite teams of threat intelligence analysts and detection engineers who serve as our first line of defense in identifying, analyzing, and responding to threats targeting CrowdStrike's internal environments.
The TIDE organization is responsible for developing and maintaining CrowdStrike's internal tactical, strategic, and operational intelligence capabilities, while building and operating sophisticated detection engineering pipelines that enable rapid response to emerging threats. This role presents an extraordinary opportunity to shape the future of threat detection and response for protecting one of the world's leading cybersecurity companies, working with cutting-edge technology and world-class security professionals to defend our enterprise and product environments.
What You'll Do:
Lead and evolve CrowdStrike's threat intelligence and detection engineering strategies, ensuring alignment with our mission to stop breaches
Drive operational excellence in intelligence collection, analysis, and detection engineering processes while maintaining the highest standards of quality and efficiency
Develop and execute the technical roadmap for intelligence-driven detection engineering pipelines and automation frameworks
Build and mentor high-performing teams across threat intelligence and detection engineering disciplines
Partner with incident response teams to ensure delivery of actionable intelligence and effective detection capabilities
Oversee the development and implementation of response playbooks and orchestration frameworks
Drive strategy and implementation of AI/LLM security controls to protect against emerging AI-based threats and attacks
Lead initiatives to leverage AI/LLM capabilities for enhanced threat detection while ensuring secure AI operations
Oversee the development of detection engineering frameworks that incorporate AI-powered analysis and response capabilities
Collaborate with cross-functional teams to drive innovation in threat detection and response capabilities
Lead strategic initiatives to stay ahead of evolving threat landscapes and adversarial techniques
What You'll Need:
12+ years of experience in cybersecurity, with significant focus on threat intelligence and detection engineering
8+ years of leadership experience managing multiple teams and managers in security operations, threat intelligence, or detection engineering roles
Proven track record of building and scaling threat intelligence programs and detection engineering capabilities
Deep understanding of adversary tactics, techniques, and procedures (TTPs)
Strong technical background in security tooling, SIEM technologies, and detection engineering principles
Experience with modern DevOps practices and automation frameworks
Understanding of AI/LLM security implications, including prompt injection attacks, model poisoning, and AI supply chain risks
Experience with security controls and governance frameworks for AI/LLM systems
Demonstrated ability to translate strategic vision into tactical execution
Excellence in stakeholder management and executive communication
Strong track record of hiring and developing top-tier security talent
Bonus Points:
Experience with cloud security and cloud-native detection engineering
Background in incident response or security operations
Knowledge of machine learning applications in security
Experience with large-scale data processing and analytics platforms
Hands-on experience securing generative AI platforms or LLM deployments
Knowledge of AI/LLM threat modeling and risk assessment methodologies
Experience developing detection engineering use cases for AI-based threats
Background in implementing security guardrails for agentic AI systems
Familiarity with AI/LLM security standards and best practices (e.g., OWASP for LLMs, NIST AI Risk Management Framework)
Published research or speaking engagements in the security community
Active participation in threat intelligence sharing communities
Experience with threat hunting and adversary emulation
Familiarity with MITRE ATT&CK framework and similar methodologies
#LI-RC1
#LI-Remote
Benefits of Working at CrowdStrike:
Remote-friendly and flexible work culture
Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe
CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.
CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.
If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.
Find out more about your rights as an applicant.
CrowdStrike participates in the E-Verify program.
For detailed information about the U.S. benefits package, please click here.
