דרושים » הנדסה » Principal Windows Internals Engineer (Cortex)

We are looking for a Linux Internals Software Engineer for our Tel Aviv R&D center. You will be part of a team that designs and develops the Linux internals components of our revolutionary endpoint security product for the Linux platform
More information about Cortex XDR product can be found here.
Key Responsibilities
Design and implement innovative capabilities for a market-leading product, deployed on a range of platforms from bare-metal to the cloud.
Develop critical components in the Linux internals parts of the product, including user and kernel-mode OS-related infrastructures in both C and C++.
Utilize cutting-edge Linux technologies for real-time event collection, anti-malware, anti-exploitation, and network filtering.
Lead features by collaborating and coordinating with other development and QA teams to ensure alignment on shared objectives.
Uphold and contribute to a team culture that values software development best practices and high standards for quality.

We are seeking an Engineering Manager to lead a cross-platform team within the Cortex XDR agent group. In this role, you will lead a group of talented engineers, making critical technical decisions and driving the team's priorities to build revolutionary security capabilities. You will own large projects, guide your engineers, and deliver impactful results in a rapidly changing environment, shaping the future of endpoint protection for millions of users.
Key Responsibilities
Lead, mentor, and manage a team of cross-platform engineers, guiding them through technical challenges, system design, and large-scale projects to deliver results.
Proactively collaborate and exchange information with Product, QA, and other stakeholders to improve processes and ensure successful project alignment.
Provide technical guidance and mentorship to engineers of all levels, fostering an environment of continuous learning and high-quality code delivery.
Take full ownership of product flows from a technical standpoint, partnering with Product Managers to define and deliver new features.
Focus on the customer by analyzing and resolving complex field-reported issues, reinforcing a customer-centric engineering approach.
Drive team growth by leading the hiring process for new engineers and fostering a positive, engaged, and motivated team environment.
Empower team members by providing regular, constructive performance feedback and creating opportunities for professional development.

Required Software Engineer
Position Overview:
As a Senior Software Developer, your daily mission involves designing and developing advanced capabilities to extract digital evidence from modern Android and iOS devices. You will tackle some of the toughest security protections such as PAC, Secure Elements, Code Signing, Hypervisors, and more. Working in the heart of the Digital Intelligence Labs group, you will contribute to productizing world-unique capabilities that enable law enforcement and private sector customers to conduct legally sanctioned digital investigations effectively and securely.
This role requires a combination of deep technical knowledge, creativity, and persistence to solve complex problems while collaborating closely with top researchers and engineers. Your work will have a direct impact on investigations that save lives and uphold justice globally.
Key Responsibilities:
Lead and contribute to the development of new access and extraction technologies for iOS platforms.
Develop robust system-level software in and Python, C, C++.
Take part of developing our next solution.
Collaborate with cross-functional teams to design, test, and integrate new capabilities into our Digital Intelligence platform.
Stay current with emerging mobile security technologies and forensic challenges.
Share knowledge and best practices within the team to elevate overall engineering quality.

As a Senior Software Developer , your daily mission involves designing and developing advanced capabilities to extract digital evidence from modern Android and IOS devices. You will tackle some of the toughest security protections such as PAC, Secure Elements, Code Signing, Hypervisors, and more. Working in the heart of the Digital Intelligence Labs group, you will contribute to productizing world-unique capabilities that enable law enforcement and private sector customers to conduct legally sanctioned digital investigations effectively and securely. This role requires a combination of deep technical knowledge, creativity, and persistence to solve complex problems while collaborating closely with top researchers and engineers. Your work will have a direct impact on investigations that save lives and uphold justice globally.



Key Responsibilities:
* Lead and contribute to the development of new extraction technologies for Android and IOS platforms.
* Analyze and reverse-engineer low-level OS internals and security mechanisms.
* Develop robust system -level software in C, C ++, and Python.
* Collaborate with cross-functional teams to design, TEST, and integrate new capabilities into Cellebrites Digital Intelligence platform.
* Stay current with emerging mobile security technologies and forensic challenges.
* Share knowledge and best practices within the team to elevate overall engineering quality.

Office Location:
Tel Aviv

As an Agent Engineer on our companys Endpoint team, you will play a pivotal role in developing our endpoint agent, taking full ownership from design to production. Your work will focus on creating efficient and secure detection and prevention capabilities, implementing robust command and control processes, and ensuring top-tier performance and reliability. Key responsibilities include:
Designing and developing high-performance, resilient solutions from concept to production.
Optimizing code and leveraging new technologies to enhance system performance.
Collaborating with skilled backend engineers to implement best practices and maintain architectural excellence.
Writing clean, efficient, and well-tested code to ensure reliability and security.
Our Tech Stack:
Rust | WinAPI | Tokio | OpenAPI | Protobuf.

What Youll Do:
As an Agent Engineer on our companys Endpoint team, you will play a pivotal role in developing our endpoint agent, taking full ownership from design to production. Your work will focus on creating efficient and secure detection and prevention capabilities, implementing robust command and control processes, and ensuring top-tier performance and reliability. Key responsibilities include:
Designing and developing high-performance, resilient solutions from concept to production.
Optimizing code and leveraging new technologies to enhance system performance.
Collaborating with skilled backend engineers to implement best practices and maintain architectural excellence.
Writing clean, efficient, and well-tested code to ensure reliability and security.
Our Tech Stack:
Rust | WinAPI | Tokio | OpenAPI | Protobuf.

We are looking for a senior Windows developer who is passionate about software design, code quality, and performance. The job involves writing production-grade and highly performant code that will be shipped to thousands of endpoints. The role includes developing for the Windows kernel to collect the necessary data as well as writing user-mode code for integrating the kernel driver into our sensors architecture.
The Responsibilities
Write production-grade C/C++ code to create robust and high-performance software drivers and applications for Windows.
Investigate possibly undocumented system behavior to enable product features or to resolve software issues.
Optimize code for maximum efficiency and resource utilization, ensuring the smooth operation of our solutions.
Collaborate closely with operating system internals to gather essential data for analyzing abnormal behavior on endpoints.
Participate in code reviews with an emphasis on design and code quality, ensuring the team adheres to best practices.
Work effectively within a team, contributing to a collaborative and innovative development environment.
Apply your problem-solving abilities to address complex technical challenges in the cybersecurity domains.

We are seeking a highly skilled and experienced Software Engineer with a strong background in low-level programming and a deep understanding of Windows internals to join our Platform group.
Platform group is in charge of some of our most complex low-level areas, such as Windows agents Anti-Tampering (self-protection from a malware attempting to harm the agent), network sensors, and other kernel-side features involving both research and development.
By joining this team you will collaborate with talented engineers who are leading a feature through the whole development lifecycle. Your work will have an impact on millions of endpoints in one of the mainstream areas of the EPP/EDR agent.
What will you do?
As a new member of our distributed development team, you will work in both user-mode & kernel-mode, and deal with a large variety of fields. You will have the chance to design, develop primarily in modern C++ (23), test and debug the most complicated real world problems (often unseen before). In order to successfully deal with this challenge, you will continuously enrich your knowledge and experience with Windows OS internals and the Endpoint Protection as well as Endpoint Detection & Response eco-system.
Our team designs and executes significant new features, as well as rewrites and reimplements the existing ones from scratch. You will also deal with extraordinary performance & optimization challenges, given the scale of our cybersecurity SW (handling hundreds of billions of events every day).
Your work will influence the security of tens of millions of Windows devices, that we protect at enterprise & government customers across the globe (incl. 5 of Fortune 10 and hundreds of Global 2000)

We are looking for a top-talented software engineer with experience in the low-level development and\or security domain, to be a founding member of our new Data Protection team. In this role, you will take end-to-end ownership of building next-generation data protection capabilities from the ground up, spanning multiple technologies, services, and layers of the product.
This is a true builder role for someone who thrives with an owners mindset, embraces ambiguity, and enjoys close collaboration, and can bridge between deep kernel/system internals into a production-grade product, integrating multiple components into a cohesive, high-impact security solution.
What will you do?
Design and implement low-level agent modules (using C++ or Rust), capable of monitoring data access and movement with minimal performance overhead.
Research and evaluate technologies for building high-fidelity sensors that track data access.
Develop robust, scalable, and performant code that operates reliably across multiple operating systems and environments.
Collaborate closely with Core Agent, Backend, and Frontend teams to deliver a unified, user-facing, next-generation data protection product.

We are looking for a talented detection engineer, someone who looks at the world differently, who explores, hunts, lives to beat the system and challenge it. Someone who can address tough security problems and deliver solutions quickly.
What will you do?
You will be responsible for detecting the newest malware and exploits based on SentinelOnes EPP platform. The role includes an end to end responsibility for behaviour based detection capabilities, starting from reversing the samples, designing new methods to detect or prevent those, and implementing it in the product in the end. You will be developing and using internal research tools, PoCs and discovering new ways to detect/prevent exploitation attacks (EoP, drive-by attacks and more). At the end of the day, your deliveries will enhance the security of dozens of millions of Windows endpoints which are protected by our platform.