About the Role:
β
CrowdStrike is looking for talented interns to join the intelligence teams within its Counter Adversary Operations department. Intelligence interns will work with one of three specialized teams: the Global Threat Analysis Cell (GTAC), the Technical Analysis Cell (TAC), or the Persona Operations Team. Each team is crucial to our mission of identifying, analyzing, and countering cyber threats globally.
β
β
β
β
What Youβll Do:
β
As an Intelligence Intern, projects and work may vary depending on the team but could include:
β
- Identify and track cyber threats, trends, and new developments through analysis of raw information, prior intelligence, and large data sets
- Collect and analyze information on adversaries' tactics, techniques, and procedures (TTPs)
- Apply analytic tradecraft to create finished intelligence products of varying depth and urgency
- Analyze malware, extract configuration data, and track threat relationships using in-house tools.
- Document threat evolutions and intelligence gaps for the broader Intelligence Team
- Leverage OSINT tradecraft to identify and track threat actors across various online communities
- Collaborate on analytical reports and threat estimates pertaining to specific focus areas
- Gather data on regional cyber groups for standing and ad hoc needs.
β
β
β
β
What You'll Need:
β
- Must be currently enrolled and completed at least 2 years at a 4-year university by the start of the internship, working towards a Bachelorβs or Masterβs degree. Graduating between May 2027-December 2027
- Strong analytical thinking and problem-solving skills
- Knowledge of cybersecurity concepts, threat intelligence, and the cyber threat landscape
- Willingness to learn new technical analysis techniques
- Excellent written and verbal communication skills
- Strong collaboration skills and ability to work effectively in a team environment
- Depending on the team assignment, additional specific requirements may include:
- GTAC: Strong knowledge of targeted intrusion threat landscape and the ability to track adversary tradecraft. Practical knowledge of research/collection tradecraft and analytical methods.
- TAC: Experience with different types of encryption, knowledge of malware-analysis and reverse-engineering principles
- Persona Operations: Foreign language capabilities, particularly Mandarin (reading/writing) and experience translating to English
β
β
β
β
Bonus Points:
β
- Having an investigative mindset.
- Experience or familiarity with OSINT research methodologies and tools, cyber threat intelligence tools, datasets, and analytic techniques.
- Experience in binary instrumentation
- Familiarity with at least a couple of the following tools and languages; IDA, Binary Ninja, Ghidra, WinDbg, x86dbg/x64dbg, C/C++, Rust, Golang, C#, .NET.
- Experience navigating online forums and marketplaces.
- Self motivated and actively seeking opportunities for growth.
β
