Windows Low Level Engineer - Endpoint security

About

As a Windows Low Level Engineer - Endpoint security, you will design and develop advanced security features for SentinelOne’s Windows endpoint protection platform, operating across both user-mode and kernel-mode environments. You will build and optimize mission-critical components including anti-tampering protections, network sensors, and agent infrastructure while solving complex performance and stability challenges at massive scale. By researching Windows internals and debugging deep system issues, you will collaborate with distributed engineering teams to deliver high-impact security capabilities protecting millions of devices worldwide.

We are seeking a highly skilled and experienced Software Engineer with a strong background in low-level C++ programming and a deep understanding of Windows OS, to help us in developing our Endpoint Protection product, the core part of our business, and to join one of our Platform group teams. (We’re currently growing multiple teams and are open to new colleagues with a wide variety of backgrounds within Windows development!)

Responsibilities

Platform group teams are in charge of some of our most complex low-level areas, such as:

• Windows agent’s Anti-Tampering (self-protection from malware attempting to harm the agent), network sensors, device control, and other kernel-side features involving both research and development,
• Usermode security & agent infrastructures - e.g. installers, logging, services such as communication layer & interfaces for our Windows agent, for improving the quality, performance & stability of the agent and making the user experience smoother

By joining our group, you will collaborate with talented engineers who are leading a feature through the whole development lifecycle. Your work will have an impact on millions of endpoints in one of the mainstream areas of the EPP/EDR agent of SentinelOne - a product recognized 5x-in-a-row as Gartner MQ Leader, scoring highly in many MITRE Att&ck assessments, valued by users in Gartner Peer Insights and more.

As a new member of one of our distributed development teams, you will work in both user-mode & kernel-mode, and deal with a large variety of fields. You will have the chance to design, develop primarily in modern C++ (23), test and debug the most complicated real-world problems (often unseen before). In order to successfully deal with this challenge, you will continuously enrich your knowledge and experience with Windows OS internals & Kernel, Endpoint Protection, and Endpoint Detection & Response eco-system.

Our teams design and execute significant new features, as well as rewrite and reimplement the existing ones from scratch. You will also deal with extraordinary performance & optimization challenges, given the scale of our cybersecurity SW (handling hundreds of billions of events every day). Your work will influence the security of tens of millions of Windows devices, that we protect at enterprise & government customers across the globe (incl. 4 of Fortune 10 and hundreds of Global 2000).

You’ll also be encouraged to share knowledge within both Platform teams and the broader Windows group.

Benefits

• Incentive-based Wellness Challenges
• Medical, Dental & Vision
• Gym Reimbursement
• Career Wellness Perks
• Mental Health & Mindfulness
• Paid Parental Leave
• 401k
• Flexible Spending Accounts
• Short & Long Term Disability Insurance
• Employee Assistance Program
• Life Insurance
• Unlimited Time Off
• Paid Sick Time
• Paid Holidays
• Happy Hours
• Parties & Celebrations
• Team Building Activities
• All-Hands & Town Hall Gatherings