Staff Windows Low Level C++ Engineer - Endpoint security

Описание вакансии

Our Purpose

At SentinelOne, we are driven by a clear purpose: to give the advantage to those who secure our future. As AI reshapes how organizations build, operate, and innovate, the responsibility to protect them becomes more critical than ever. When you join SentinelOne, your work helps protect global enterprises, critical infrastructure, and the technologies shaping tomorrow. If you are motivated by meaningful challenges and want your impact to be real, measurable, and global, you will find purpose here.

About Us

SentinelOne is a company at the intersection of AI and security, pioneering a new operating model for cybersecurity. Our AI-native platform unifies protection across endpoint, cloud, identity, data, and AI systems to deliver autonomous detection and response with clarity and speed. By combining real-time analytics, intelligent automation, and a unified data foundation, we reduce noise, simplify complexity, and empower security teams to focus on what truly matters.

Our teams are builders, problem-solvers, and innovators committed to shaping the future of security. If you are excited to solve hard problems alongside talented, mission-driven people, we invite you to help us build a safer future for humanity.

What Are We Looking For?

We’re looking for people who are relentlessly curious and committed to continuous learning. AI is reshaping every function across our business, and we enable every team member, regardless of role or level, to build fluency in AI tools and concepts. Those who thrive here actively seek out new solutions, experiment thoughtfully, and apply what they learn to drive better, faster, smarter outcomes.

As a Windows Low Level Engineer - Endpoint security, you will design and develop advanced security features for SentinelOne’s Windows endpoint protection platform, operating across both user-mode and kernel-mode environments. You will build and optimize mission-critical components including anti-tampering protections, network sensors, and agent infrastructure while solving complex performance and stability challenges at massive scale. By researching Windows internals and debugging deep system issues, you will collaborate with distributed engineering teams to deliver high-impact security capabilities protecting millions of devices worldwide.

We are seeking a highly skilled and experienced Software Engineer with a strong background in low-level C++ programming and a deep understanding of Windows OS, to help us in developing our Endpoint Protection product, the core part of our business, and to join one of our Platform group teams. (We're currently growing multiple teams and are open to new colleagues with a wide variety of backgrounds within Windows development!).

The Platform group teams are in charge of some of our most complex low-level areas, such as:

• Windows agent’s Anti-Tampering (self-protection from malware attempting to harm the agent), network sensors, device control, and other kernel-side features involving both research and development,
• usermode security & agent infrastructures - e.g. installers, logging, services such as communication layer & interfaces for our Windows agent, for improving the quality, performance & stability of the agent and making the user experience smoother.

By joining our group, you will collaborate with talented engineers who are leading a feature through the whole development lifecycle. Your work will have an impact on millions of endpoints in one of the mainstream areas of theEPP/EDR agent of SentinelOne - a product recognized 5x-in-a-row as Gartner MQ Leader, scoring highly in many MITRE Att&ck assessments, valued by users in Gartner Peer Insights and more.

What will you do?

• As a new member of one of our distributed development teams, you will work in both user-mode & kernel-mode, and deal with a large variety of fields.
• You will have the chance to design, develop primarily in modern C++ (23), test and debug the most complicated real-world problems (often unseen before). In order to successfully deal with this challenge, you will continuously enrich your knowledge and experience with Windows OS internals & Kernel, Endpoint Protection, and Endpoint Detection & Response eco-system.
• Our teams design and execute significant new features, as well as rewrite and reimplement the existing ones from scratch. You will also deal with extraordinary performance & optimization challenges, given the scale of our cybersecurity SW (handling hundreds of billions of events every day).
• Your work will influence the security of tens of millions of Windows devices, that we protect at enterprise & government customers across the globe (incl. 4 of Fortune 10 and hundreds of Global 2000).
• You’ll also be encouraged to share knowledge within both Platform teams and the broader Windows group.

What skills & knowledge should you bring?

• Multiple years of experience as a software engineer in the area of lowlevel programming using modern C++ (or using C and a willingness to learn modern C++)
• Hands-on experience and in-depth understanding of Windows OS design & internals, Windows low-level development, with debugging of Windows applications and familiarity with related standard debugging and profiling tools
• Previous experience working on a production-grade product with a wide-scale deployment
• Great communication skills and the ability to work both independently and with peers from different time zones, problem-solving and out-of-the-box thinking
• Attention to detail and high coding standards
• An advantage: experience with Windows Kernel and Windows Drivers development, experience in security-oriented development, with reversing or malware analysis

Why us?

Because you will work on real-world problems with risks of millions of dollars (protecting against Ransomware and other threats) and make an impact by preventing our customers from appearing in global news after being attacked. You will be joining a technologically cutting-edge project and will be able to influence the architecture, design, and building of our core platform. You will meet extraordinary challenges and work with the very BEST in the industry.

On top of that we offer you

• Flexible working hours, this is a 100% remote role based within Spain; we provide optional membership in major coworking chains

+ Currently for this role in Spain we are able to consider only candidates that are already eligible to work in the EU at the time of applying

+ Optionally for those willing to relocate to the Czech Republic relocation assistance is available for any candidates that are already eligible to work in the EU at the time of applying

• Generous employee stock plan in the form of grant of RSUs(restricted stock units), not options; 4 years vesting with 1 year cliff and then quarterly, stock refresh yearly
• Yearly bonus depending on the performance of the company, paid out in 2 installments
• 30 Days of Paid Annual Leave
• Flexible Paid Sick Days
• Pension insurance contribution
• Premium Life Insurance covered by S1
• Premium Medical & Dental Insurance covered by S1
• Meal, Transport & Homeoffice allowance of total 440 EUR/month
• Global gender-neutral Parental Leave (16 weeks, beyond the leave provided by the local laws) & Grandparent Leave
• Volunteering paid day off & Additional paid Company holidays off (e.g. 4 days in 2022)
• Global Employee Assistance Program (confidential counseling related to both personal and work life matters)
• LinkedIn Learning platform for Hard/Soft skills Training & Support for your further educational activities/trainings
• Above-standard referral bonus

& Additional country-specific benefits to Spain

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles.