Keeper Security, Inc.Remote
Senior Software Engineer, Endpoint Agent (MacOS)
United States of America
Full Time
1 week ago
No H1B
Key skills
macOS software developmentSwiftObjective-CC/C++RustGomacOS securityprivilege modelspackaging and deployment on macOSdebuggingautomated testingCI/CDcommunicationcross-functional collaborationC++CCachingSDLCCommunication
About this role
Keeper Security is one of the fastest-growing cybersecurity software companies that protects thousands of organizations and millions of people in over 150 countries. They are seeking a Senior Software Engineer to design and implement macOS endpoint agent capabilities for their Endpoint Privilege Manager solution, focusing on policy enforcement, telemetry, and security enhancements.
Responsibilities:
- Design, build, and maintain macOS agent components for EPM, including elevation workflows, policy enforcement, and audit logging
- Implement secure local policy evaluation and caching to support offline/online operation and consistent enforcement
- Build robust agent lifecycle capabilities including installation, upgrades, rollback safety, notarization/signing, and configuration management
- Integrate the agent with management-plane services and APIs for policy distribution, device identity, telemetry, and reporting
- Strengthen tamper resistance and abuse prevention, including hardening service/daemon behavior and agent configuration/update flows
- Improve diagnostics and observability (structured logs, health signals, performance profiling, crash handling) to support enterprise deployments
- Collaborate with QA Automation to improve test coverage and reliability across unit, integration and end-to-end test suites
- Participate in secure SDLC practices, threat modeling, code reviews, and on-call/incident response as needed
Requirements:
- 5+ years of professional software engineering experience delivering production software
- Strong experience building macOS-native software such as daemons/services, endpoint agents, system utilities, or security tooling
- Proficiency in one or more languages commonly used for macOS agent development (e.g., Swift/Objective-C, C/C++, Rust, Go)
- Solid understanding of macOS security and privilege models (process execution, entitlements, TCC/privacy controls, least privilege patterns)
- Experience with packaging and enterprise deployment patterns on macOS (pkg, signing, notarization, MDM distribution)
- Strong debugging skills for complex issues (concurrency, performance, stability, and root cause analysis)
- Experience building automated tests and working in CI/CD environments; strong engineering hygiene around reviews and documentation
- Strong communication skills and ability to partner cross-functionally with Product, QA and Security
- Experience with endpoint privilege management, EDR/EPP agents, device management, or identity/security products
- Familiarity with macOS platform security architecture (e.g., system extensions) and enterprise management workflows
- Experience designing policy engines (rules evaluation, precedence, auditability, explainability)
- Familiarity with secure update mechanisms, signing/notarization, and release hardening for endpoint software
- Exposure to IT admin and MSP workflows and macOS enterprise tooling (e.g., Jamf, Kandji, Intune for macOS)
- Exposure to secure SDLC practices and compliance-minded engineering (e.g., SOC 2, FedRAMP, NIST)