engineering
Posted Mar 13Senior Software Engineer, Endpoint Agent (Windows)
at Keeper.app
United StatesHybrid
Responsibilities
- Design, build, and maintain Windows agent components for EPM, including privilege elevation workflows, policy enforcement, and audit logging
- Implement secure local policy evaluation and caching to support offline/online operation and consistent enforcement
- Build robust agent lifecycle capabilities including installation, upgrades, rollback safety, and configuration management
- Integrate the agent with management-plane services and APIs for policy distribution, device identity, telemetry, and reporting
- Strengthen tamper resistance and abuse prevention (e.g., protecting services/processes, hardening configuration and update flows)
- Improve diagnostics and observability (structured logs, health signals, performance profiling, crash handling) to support enterprise deployments
- Collaborate with QA Automation to improve test coverage and reliability across unit, integration and end-to-end test suites
- Manage interviews and recruitment workflow
- Lodge a complaint with your data protection authority
Requirements
- Its core offering, KeeperPAM®, is an AI-enabled, cloud-native platform that protects all users, devices and infrastructure from cyber attacks.
- Participate in secure SDLC practices, threat modeling, code reviews, and on-call/incident response as needed Requirements
- experience building Windows-native software such as services, endpoint agents, system utilities, or security tooling
- Proficiency in one or more languages commonly used for Windows agent development (e.g., C/C++, C#, Rust, Go)
- Solid understanding of Windows security and privilege models (UAC/elevation concepts, tokens/identity, process execution, access controls) •
- Experience with packaging and deployment patterns in enterprise Windows environments (installers, signing, upgrades)
- Experience building automated tests and working in CI/CD environments; strong engineering hygiene around reviews and documentation
- Experience with endpoint privilege management, EDR/EPP agents, device management, or identity/security products •
- Experience designing policy engines (rules evaluation, precedence, auditability, explain-ability)