Sr. Engineer, Falcon Secure Access (Hybrid, ISR)

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. We work on large scale distributed systems, processing almost 3 trillion events per day and this traffic is growing daily. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.About the Role:The Falcon Secure Access (FSA) team at CrowdStrike is expanding. As a Senior Software Engineer on our team, you will architect and deliver a next-generation secure access platform that converges Zero Trust Network Access with browser-native security.You'll build the core systems that enable users to seamlessly and securely access internal sites, private applications, and cloud resources directly from the browser — without legacy VPNs or remote desktops — while enforcing real-time protection against zero-day exploits, phishing, data exfiltration, and unauthorized access.This role sits at the intersection of network engineering and browser security: you'll design and implement advanced proxy communication, secure tunneling, and identity-aware routing — all operating at the browser's core to deliver holistic protection including DLP, insider threat detection, SaaS security, and continuous zero-trust verification.What You'll Do:Design and build ZTNA infrastructure — implement zero-trust access policies, secure tunneling, and identity-aware network routing that replaces traditional VPN architecturesDevelop advanced networking solutions — build and optimize proxy communication layers, WebSocket-based transport, and encrypted client-to-server channels that handle millions of concurrent connectionsArchitect high-scale backend systems — design distributed microservices for policy enforcement, real-time threat detection, and access control at scale using Node.js / TypeScriptImplement secure client-server communication — design highly secured agent-to-cloud architectures with certificate pinning, mutual TLS, and encrypted tunneling protocolsBuild browser-native security components — develop browser extensions and agents (Chrome, Edge, Firefox etc.) that enforce data protection, prevent data leakage, and provide granular visibility and controlOwn features end-to-end — from design through delivery, including deployment and monitoringInfluence architecture and roadmap — play a key role in architectural decisions, building toward an efficient distributed zero-trust architectureResearch and develop — drive new initiatives and POCs in zero-trust access domains and browser securityCollaborate cross-functionally — work with security researchers, product, and platform teams across multiple locations to solve complex problemsWhat You'll Need:5+ years of industry experience building high-performance software products, preferably in cybersecurityStrong networking fundamentals — deep understanding of communication protocols (TCP/IP, TLS, WebSockets, HTTP/2), proxy architectures, and tunneling mechanismsProven backend expertise — experience designing and developing high-scale microservices in Node.js / TypeScript / Python / GO / C++Hands-on experience with proxy and secure communication — WebSocket implementations, forward/reverse proxies, MITM inspection, and encrypted channel designFamiliarity with encryption and secure communication — TLS/mTLS, certificate management, key exchange protocols, and secure session handlingExperience with client-agent development — building complex, efficient client-side agents with reliable server communicationCloud platform experience — AWS, GCP, or Azure, with understanding of on-premises and hybrid infrastructureStrong research and debugging capabilities — ability to dive deep into protocol-level issues, browser internals, and network tracesBS or MS in Computer Science or related engineering disciplineProactive problem-solver with attention to detail and a team-oriented mindsetBonus Points:Network security background — experience with network-layer security, firewalls, NAC, SD-WAN, or SASE architecturesZTNA / Zero Trust experience — familiarity with zero-trust principles, identity-based access, micro-segmentation, or existing ZTNA productsEDR/endpoint security knowledge — experience integrating with endpoint detection and response platformsBrowser internals expertise — Chromium internals, browser extension/plugin development, or web platform APIsOS internals and low-level networking — understanding of OS network stacks, socket programming, or kernel-level packet handlingContainerization and orchestration — Kubernetes, self-contained deployable agents, on-prem components#LI-SN1Benefits of Working at CrowdStrike: Market leader in compensation and equity awardsComprehensive physical and mental wellness programsCompetitive vacation and holidays for rechargePaid parental and adoption leavesProfessional development opportunities for all employees regardless of level or roleEmployee Networks, geographic neighborhood groups, and volunteer opportunities to build connectionsVibrant office culture with world class amenitiesGreat Place to Work Certified™ across the globe CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities th