×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Systems Engineer Cybersecurity AI Engineer

Principal Engineer, Cloud Content; Remote

Remote / Online - Candidates ideally in
Maryland, USA
Listing for: CrowdStrike
Remote/Work from Home position
Listed on 2025-12-14
Job specializations:
  • IT/Tech
    Systems Engineer, Cybersecurity, AI Engineer
Job Description & How to Apply Below
Position: Principal Engineer, Cloud Content (Remote)

Join to apply for the Principal Engineer, Cloud Content (Remote) role at Crowd Strike
.

About

The Role

Crowd Strike is seeking a Principal Engineer that will operate as the senior technical authority for cloud threat detection. This role owns the design of cloud-native detection logic, advanced telemetry pipelines, cloud attack-surface visibility, and real-time threat-detection capabilities across public clouds. The Principal Engineer role drives deep technical initiatives: building detection-as-code frameworks, researching emerging cloud-native threats, designing scalable detection architectures, and leading complex cloud-focused investigations.

This role sets the technical bar for cloud detection engineering, influences platform and cloud-architecture decisions, and ensures the entire detection stack is aligned to adversary tradecraft in modern cloud environments.

This is expected to define technical direction, solve problems no one else can, and create durable mechanisms that raise detection quality and velocity across the cloud ecosystem.

What You'll Do
  • Architect, build, and optimize cloud detection pipelines: telemetry ingestion, log processing, alerting, detection-as-code workflows, and automated analysis frameworks.
  • Develop advanced detections for cloud-native threats: IAM misconfigurations, lateral movement across cloud services, runtime/container attacks, serverless abuse, data-exfiltration patterns, persistence mechanisms, and cloud control-plane manipulation.
  • Lead cloud threat research: track emergent attacker tradecraft, cloud-native TTPs, abuse of managed services, supply-chain risks, ephemera compute patterns, and multi-cloud attack surfaces.
  • Conduct advanced investigations involving cloud logs, control-plane events, network telemetry, and container/runtime signals.
  • Collaborate deeply with cloud engineering, platform teams, and Dev Ops to embed telemetry early in design — instrumentation, log generation, audit events, and detection hooks across cloud services.
  • Recommend and drive enhancements to cloud observability and detection coverage, backed by analysis of gaps, adversary opportunities, and telemetry blind spots.
  • Influence architectural decisions and strategic initiatives through data, technical depth, and adversary-focused perspectives.
  • Mentor other detection engineers by setting standards for detection logic, code quality, cloud telemetry hygiene, and investigation methodology.
What You'll Need
  • 8 to 15+ years of experience in cloud threat detection, cloud security engineering, incident response, threat hunting, or equivalent.
  • Strong expertise with AWS and at least one of Azure or GCP; deep knowledge of cloud control-plane events, service logs, runtime/container ecosystems, and network architectures.
  • Proven ability to design and deliver high-fidelity cloud detections in large-scale environments, with understanding of FP/FN trade-offs and detection-as-code methodologies.
  • Strong engineering ability:
    Python, Go, or equivalent languages; familiarity with CI/CD, infrastructure-as-code, and cloud automation.
  • Demonstrated ability to lead complex cloud investigations and turn findings into durable detection logic.
  • Strong understanding of cloud threat models: identity-based attacks, misconfiguration abuse, boundary-less lateral movement, data-exfiltration paths, and cloud service exploitation.
  • Ability to influence platform teams, propose architectural improvements, and advocate for telemetry and detection requirements with clear rationale and evidence.
Bonus Points
  • Experience with multi-cloud detection architectures at scale.
  • Experience building detection testing frameworks or automated validation pipelines.
  • Deep familiarity with attacker tradecraft targeting cloud infrastructure.
  • Strong communication skills; concise, technical, grounded in adversary behavior and detection outcomes.
Benefits Of Working At Crowd Strike
  • Remote-friendly and flexible work culture
  • Market leader in compensation and equity awards
  • Comprehensive physical and mental wellness programs
  • Competitive vacation and holidays for recharge
  • Paid parental and adoption leaves
  • Professional development opportunities for all employees regardless of…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search