Senior Kernel Software Developer

• Design and develop Windows kernel-mode filter drivers to support advanced security monitoring and enforcement capabilities.
• Build and maintain file system minifilters, registry filters, network filters, and other low-level system components.
• Research and analyze Windows internals to implement advanced security features and tamper-resistant protections.
• Collaborate with threat researchers and software engineers to create scalable endpoint security solutions.
• Debug complex kernel issues, analyze crash dumps, and optimize performance using WinDbg, ETW, and related tools.
• Develop secure, reliable, and maintainable driver code that meets Microsoft's signing and certification requirements.
• Monitor Windows platform updates and ensure ongoing compatibility across supported operating systems.
• Contribute to the design and evolution of next-generation endpoint protection technologies.

Do you have experience in Vulnerability research?, * 5+ years of hands-on experience developing Windows kernel-mode drivers.

• Experience with Windows filter driver development, including file system minifilters, registry filters, or network filters.
• Understanding of Windows system internals, including memory management, I/O subsystems, object management, process management, and related kernel components.
• C/C++ development skills.
• Experience with Windows Driver Kit (WDK) and kernel debugging tools.
• Experience analyzing kernel crashes, memory dumps, and system behavior using WinDbg and related technologies.
• Cybersecurity industry experience, particularly with endpoint protection, EDR, anti-malware, or system monitoring products.
• Strong understanding of code injection techniques, hooking mechanisms, kernel exploitation methods, and mitigation strategies.
• Excellent problem-solving abilities and a security-first engineering mindset., * Malware analysis experience.
• Reverse engineering experience.
• Rootkit detection and analysis experience.
• Knowledge of Windows kernel threat models.
• Familiarity with secure coding practices for low-level systems.
• Experience with Microsoft driver signing, WHQL certification, and driver submission processes.
• Contributions to open-source security projects.
• Security research publications, conference presentations, or community involvement.

Pulled from the full job description

• Referral program
• Paid parental leave
• Parental leave
• 401(k)
• Health insurance
• 401(k) matching
• Paid time off, Dive deep into Windows internals, filter drivers, endpoint protection, process monitoring, kernel security, and advanced threat prevention.

Collaborate With Experts

Work alongside experienced engineers, threat researchers, security analysts, and product teams focused on pushing cybersecurity forward.

Grow Your Career

Join a rapidly growing cybersecurity company where your ideas and technical expertise can directly influence the future of our products.

Benefits & Perks

• Competitive salary
• Company stock options
• 401(k) with company match
• Medical, dental, and vision insurance
• Paid time off and company holidays
• Collaborative, innovation-focused culture
• Annual Employee Appreciation Car Giveaway, * 401(k)
• 401(k) matching
• Dental insurance
• Health insurance
• Life insurance
• Paid parental leave
• Paid time off
• Parental leave
• Referral program
• Stock options
• Vision insurance

At ThreatLocker, we're not looking for developers who want to build another web application. We're looking for engineers who want to work at the lowest levels of Windows, solve complex security challenges, and build technology that protects organizations around the world from ransomware, malware, and advanced cyber threats. Our platform protects thousands of organizations globally by taking a proactive approach to cybersecurity. Instead of detecting threats after the damage is done, we focus on preventing malicious activity before it can execute. If you're passionate about Windows internals, kernel development, endpoint security, and building software that directly impacts real-world cybersecurity, we'd love to talk with you. Why ThreatLocker? Your code will help secure businesses, schools, hospitals, government agencies, and critical infrastructure around the world., ThreatLocker is a global cybersecurity leader providing enterprise-level endpoint protection solutions that help organizations prevent ransomware, malware, and unauthorized software execution. Our platform combines Application Allowlisting, Ringfencing , Storage Control, Elevation Control, Endpoint Network Control, Configuration Management, and Operational Alert technologies to deliver a proactive approach to cybersecurity. Join us and help build the technology that protects organizations around the world. A background check and drug screening are required following a conditional offer of employment.