We are unable to sponsor as this is a permanent Full time role
A prestigious company is looking for a Senior Product Security Engineer. This role is focused on reverse engineering, analysing malware, ransomware, ability to develop tools to augment existing capabilities, etc.
Responsibilities
- Design and implement security test harnesses from scratch to simulate real-world ransomware behavior
- Develop and integrate fuzzers (libFuzzer, AFL/WinAFL, or custom tools) for automated crash and vulnerability discovery
- Build user-mode hooking instrumentation and explore EDR bypass techniques to exercise agent internals
- Triage, reproduce, and analyze security findings against our agent and libraries
- Perform root-cause analysis on crashes or logic flaws; build minimal PoC exploits or reproducer cases
- Deep understanding of Windows internals (ring transitions, memory management, Win32 API) with focus on user-mode security hooks
- Collaborate on driver-level or API-level integrations when necessary (no Kernel-driver dev required)
Qualifications
- 5+ years in product security or endpoint-focused consulting, with hands-on testing of Windows-based agents or EDR/AV products
- Experience building fuzzers or integrating existing fuzzing frameworks for native code
- Experience and capability in building automated test harnesses from the ground up
- Strong Windows OS internals knowledge, especially user-mode hooking and Win32 API behaviors
- Proficient in C/C and Python, with solid experience calling with Windows APIs
- Experience reviewing and validating security findings
- Comfortable researching and suggesting security features end-to-end and creating technical content
- Rust development experience, particularly around FFI or unsafe code
- Published tooling or research in vulnerability discovery, fuzzing, and/or automated test frameworks
- Hands-on experience with CI platforms (GitHub Actions, Jenkins) to automate security workflows