Keeper Security, Inc.Remote
Senior Software Engineer, Endpoint Privilege Manager (EPM) New
United States
Full Time
2 hours ago
No H1B
Key skills
C/C++OS security conceptssystem-level softwareJavaGoRustCI/CD environmentscollaborative teamworkC#C++C.NETSAMLCachingSDLCCI/CDCommunication
About this role
Keeper Security is a rapidly growing cybersecurity company that is looking for a Senior Software Engineer to join their Endpoint Privilege Manager (EPM) team. The role involves designing, building, and maintaining core capabilities for privilege management solutions, with a focus on security, reliability, and performance across multiple operating systems.
Responsibilities:
- Design, build, and maintain core KEPM/EPM capabilities, including policy evaluation, privilege enforcement, elevation workflows, and audit logging
- Develop and harden endpoint agent components (services/daemons, installers/updaters, local policy caching, secure IPC) with a focus on security, reliability, and performance
- Implement platform integrations and management-plane capabilities (APIs, admin workflows, telemetry) to support enterprise deployment, monitoring, and troubleshooting
- Partner with Product to review technical approaches, break down epics, and deliver incremental value through well-scoped releases
- Collaborate with QA Automation to expand test coverage (unit, integration, end-to-end), improve CI reliability, and build testable interfaces into agent and service components
- Participate in security reviews and threat modeling; remediate vulnerabilities and improve tamper resistance and abuse prevention
- Improve observability and diagnosability across components (structured logging, metrics, crash reporting, debug tooling)
- Participate in on-call and incident response as needed; contribute to postmortems and prevention measures
Requirements:
- 5+ years of professional software engineering experience delivering production software
- Proficiency in one or more systems/backend languages such as C/C++, Rust, Go, C#/.NET, or Java, with the ability to work across a multi-language codebase
- Experience building system-level software (endpoint agents, desktop applications, services/daemons, security tooling, or device management components)
- Strong understanding of OS security concepts and privilege models (least privilege, process execution, access control, secure update/signing patterns)
- Experience debugging and optimizing complex software (concurrency, performance profiling, memory/threading issues)
- Experience building automated tests and working in CI/CD environments; strong engineering hygiene around code review, testing, and documentation
- Strong communication skills and ability to partner cross-functionally with Product, QA, and Security
- Experience with endpoint privilege management, EDR/EPP, device management, or identity/security products
- Deep expertise in at least one endpoint OS ecosystem (Windows, macOS, or Linux) and its privilege/security model (services/daemons, elevation flows, packaging, and code signing)
- Experience designing policy engines (rules evaluation, precedence, auditability, and explainability)
- Familiarity with enterprise identity and integrations (SAML, OIDC, SCIM) and/or IT admin tooling and workflows (RMM/PSA, scripting, software deployment)
- Exposure to secure SDLC practices and compliance-minded engineering (e.g., SOC 2, FedRAMP, NIST)