Senior Product Security Engineer

***We are unable to sponsor as this is a permanent full-time role***

A prestigious company is looking for a Senior Product Security Engineer. This role is focused on reverse engineering, analyzing malware, ransomware, ability to develop tools to augment existing capabilities, Windows internals, etc.

Responsibilities

• Design and implement security test harnesses from scratch to simulate real-world ransomware behavior
• Develop and integrate fuzzers (libFuzzer, AFL/WinAFL, or custom tools) for automated crash and vulnerability discovery
• Build user-mode hooking instrumentation and explore EDR bypass techniques to exercise agent internals
• Triage, reproduce, and analyze security findings against our agent and libraries
• Perform root-cause analysis on crashes or logic flaws; build minimal PoC exploits or reproducer cases
• Deep understanding of Windows internals (ring transitions, memory management, Win32 API) with focus on user-mode security hooks
• Collaborate on driver-level or API-level integrations when necessary (no kernel-driver dev required)

Qualifications

• 5+ years in product security or endpoint-focused consulting, with hands-on testing of Windows-based agents or EDR/AV products
• Experience building fuzzers or integrating existing fuzzing frameworks for native code
• Experience and capability in building automated test harnesses from the ground up
• Strong Windows OS internals knowledge, especially user-mode hooking and Win32 API behaviors
• Proficient in C/C++ and Python, with solid experience calling with Windows APIs
• Experience reviewing and validating security findings
• Comfortable researching and suggesting security features end-to-end and creating technical content
• Rust development experience, particularly around FFI or unsafe code
• Published tooling or research in vulnerability discovery, fuzzing, and/or automated test frameworks
• Hands-on experience with CI platforms (GitHub Actions, Jenkins) to automate security workflows