Linux Agent Engineer

Halcyon

14d•Remote

About The Position

Halcyon's goal is to deliver an anti-ransomware solution that breaks new ground as to what a security product can deliver. Aligned with this goal, Halcyon is looking for an experienced engineer to contribute to the development of our Linux agent. Our agent is the main endpoint communications hub and analysis engine that is used to help ensure our customers are protected from the threat of ransomware. If you're passionate about security and want to make a real difference, we'd love to hear from you. This role will include a focus on eBPF-based driver development for new capabilities. In addition to general Rust Agent work you will be working on kernel-level components that enable real-time threat detection and response at the system level.

Requirements

Ability to develop high-quality production code in Rust
Strong experience with eBPF development including writing eBPF programs, user-space loaders, and event processing pipelines
Deep understanding of Linux kernel internals, system calls, and kernel data structures
Experience with eBPF toolchains and libraries (libbpf, BPF CO-RE, bpftool, or similar)
Proficiency debugging kernel-level code and eBPF programs using tools like bpftrace, perf, or similar
Knowledge and experience with the following Rust crates: threading, async, tokio
Experience with Linux driver development or kernel module programming

Nice To Haves

Familiarity with Linux Security Modules (LSM)
Familiarity with SQL
Experience with endpoint security or threat monitoring systems
Knowledge of additional languages (C++, Python)
Understanding of process monitoring, network traffic analysis, or file system monitoring using eBPF

Responsibilities

Develop High-Performance System Code: Write high-performance code in Rust and C for eBPF probes, user-space components, and kernel interactions
Design Agent Functionality: Handle core agent operations including data processing pipelines, inter-component communication, and system integration for the Linux endpoint agent
eBPF and Kernel Development: Design and develop eBPF programs and/or kernel-level drivers for behavioral monitoring and security event detection
Performance Optimization: Optimize eBPF program performance and ensure compatibility across different Linux kernel versions
Cross-Platform Contributions: Work with multi-platform logic in Rust while ensuring compatibility and optimal performance across different operating systems and architectures
Debugging & Optimization: Use logs, debuggers, and profiling tools to analyze performance, diagnose issues, and ensure correct behavior
Test & Maintain Code Quality: Write unit and integration tests for your code, adhering to consistent coding style guidelines and overall product architecture
Team Collaboration: Communicate effectively with other developers and teams to ensure the component integrates well within the overall product architecture and maintains interoperability across platforms

Benefits

Comprehensive healthcare (medical, dental, and vision) with premiums paid in full for employees and dependents.
401k plan with 3% employer match
Short and long-term disability coverage, basic life and AD&D insurance plans.
Medical and dependent care FSA options.
Flexible PTO policy
Parental leave
Generous equity offering

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume