Senior Software Engineer, Endpoint Agent (MacOS)

About The Position

Requirements

• 5+ years of professional software engineering experience delivering production software
• Strong experience building macOS-native software such as daemons/services, endpoint agents, system utilities, or security tooling
• Proficiency in one or more languages commonly used for macOS agent development (e.g., Swift/Objective-C, C/C++, Rust, Go)
• Solid understanding of macOS security and privilege models (process execution, entitlements, TCC/privacy controls, least privilege patterns)
• Experience with packaging and enterprise deployment patterns on macOS (pkg, signing, notarization, MDM distribution)
• Strong debugging skills for complex issues (concurrency, performance, stability, and root cause analysis)
• Experience building automated tests and working in CI/CD environments; strong engineering hygiene around reviews and documentation
• Strong communication skills and ability to partner cross-functionally with Product, QA and Security

Nice To Haves

• Experience with endpoint privilege management, EDR/EPP agents, device management, or identity/security products
• Familiarity with macOS platform security architecture (e.g., system extensions) and enterprise management workflows
• Experience designing policy engines (rules evaluation, precedence, auditability, explainability)
• Familiarity with secure update mechanisms, signing/notarization, and release hardening for endpoint software
• Exposure to IT admin and MSP workflows and macOS enterprise tooling (e.g., Jamf, Kandji, Intune for macOS)
• Exposure to secure SDLC practices and compliance-minded engineering (e.g., SOC 2, FedRAMP, NIST)

Responsibilities

• Design, build, and maintain macOS agent components for EPM, including elevation workflows, policy enforcement, and audit logging
• Implement secure local policy evaluation and caching to support offline/online operation and consistent enforcement
• Build robust agent lifecycle capabilities including installation, upgrades, rollback safety, notarization/signing, and configuration management
• Integrate the agent with management-plane services and APIs for policy distribution, device identity, telemetry, and reporting
• Strengthen tamper resistance and abuse prevention, including hardening service/daemon behavior and agent configuration/update flows
• Improve diagnostics and observability (structured logs, health signals, performance profiling, crash handling) to support enterprise deployments
• Collaborate with QA Automation to improve test coverage and reliability across unit, integration and end-to-end test suites
• Participate in secure SDLC practices, threat modeling, code reviews, and on-call/incident response as needed

Benefits

• Medical, Dental & Vision (inclusive of domestic partnerships)
• Employer Paid Life Insurance & Employee/Spouse/Child Supplemental Life
• Voluntary Short/Long Term Disability Insurance
• 401K (Roth/Traditional)
• A generous PTO plan that celebrates your commitment and seniority (including paid Bereavement/Jury Duty, etc.)
• Above-market annual bonuses