macOS Endpoint Engineer
StairwellFull Time
Senior (5 to 8 years)
Candidates must have 5+ years of experience in reverse engineering, threat detection, and malware analysis with an interest in on-device development, OR in designing, building, and delivering high-quality software using Swift, C/C++, Python, or Objective-C with an interest in security. A strong understanding of macOS and/or Linux operating system internals, components, APIs, and frameworks is required. Teamwork, leadership, communication, and collaboration skills are essential for working effectively in a distributed team. Prior security experience, particularly in endpoint threat detections or sensor development, familiarity with the Linux/Windows threat landscape, experience with macOS security frameworks and events, and recent macOS developments are considered bonuses.
The role involves researching and developing techniques for detecting malicious activity on macOS systems and implementing these as production-level solutions for the endpoint sensor. Responsibilities include designing and building detection logic and systems, extending the existing codebase using Swift, C++, and Python, and leveraging domain-specific languages. Engineers will research detection techniques, potentially involving reverse engineering and big data analysis. They will apply engineering best practices such as secure coding, testing, debugging, performance optimization, code reviews, CI/CD, and OS internals to ensure sensor code is fast and reliable. Responsibilities also include troubleshooting product issues reported by customers and acting as a self-starter with the ability to take ownership and accountability for deliverables, both individually and as a team lead.
Cloud-native endpoint security solutions provider
CrowdStrike specializes in cybersecurity, focusing on protecting businesses from cyber threats through cloud-native endpoint security solutions. Their main product, the Falcon platform, includes services like Falcon Pro, which replaces traditional antivirus with next-generation antivirus that integrates threat intelligence, Falcon Insight for endpoint detection and response, and Falcon Device Control to manage connected devices. Unlike many competitors, CrowdStrike's services are subscription-based, allowing clients to choose different levels of protection based on their needs. The company serves a diverse clientele, including many Fortune 100 companies, and is recognized as a leader in the cybersecurity field, known for its effectiveness in threat detection and response.