Interviewed for a senior PM role at CrowdStrike on the Falcon platform side earlier this year. Going to be specific because PM interviews at security companies have a distinct flavor and I couldn't find good prep material beforehand.
First thing: CrowdStrike PM interviews are B2B-heavy. If your background is consumer or early-stage startup, you'll need to translate everything into enterprise-security language. They care about the practitioner (SOC analyst, CISO, IT admin) as customer. Not a general market, a specific technical user with a workflow.
Rounds I went through: Recruiter screen (covered elsewhere) HM screen (45 min): half background, half "tell me about a B2B product you've owned." Virtual onsite: 4 sessions. Product sense, analytical, behavioral, cross-functional.
Product sense session. Got a prompt like: "how would you improve the Falcon analyst console for a tier-1 SOC analyst?" They expect you to know what a SOC analyst does. If you don't, you'll stumble. I'd spent a week reading about SOC workflows and alert fatigue before this and it showed. They probed on: how do you define success metrics for this? What's the riskiest assumption? How would you prioritize given 3 competing features?
Analytical session. They gave me a scenario around an alert volume spike and asked me to walk through how I'd diagnose it, what data I'd pull, how I'd know if it was a product problem vs. an external threat event. No SQL in my loop but I've heard data-heavy candidates get SQL questions.
What stood out from their feedback: They flagged that candidates who treat security as "just another vertical" don't do well. The mission matters to the team. If you're applying, understand why detection quality vs. false positive rate is an actual product tradeoff that affects customer trust.
Offer was competitive. Comp was in line with senior PM benchmarks for Austin (total comp around $220k-$240k range when I last checked leveled comps in the market). Decided to stay where I was but it was a real decision.