Logo for SentinelOne

Staff Windows Low Level C++ Engineer - Endpoint security

Role overview

Qualifications

  • Several years of experience as a software engineer in low-level programming using modern C++ (or C with willingness to learn modern C++)
  • Hands-on experience and in-depth understanding of Windows OS design/internals, Windows low-level development, with debugging of Windows applications and familiarity with related standard debugging and profiling tools
  • Experience working on a production-grade product with wide-scale deployment
  • Excellent communication skills and ability to work independently and with peers from different time zones, problem-solving and out-of-the-box thinking

Responsibilities

  • Design, develop, test, and debug features primarily in modern C++ (C++23) across user-mode and kernel-mode Windows components, focusing on Windows OS internals, Endpoint Protection, and EDR ecosystem
  • Contribute to Windows agent components (anti-tampering, network sensors, device control, kernel-side features) and user-mode infrastructures (installers, logging, services) to improve quality, performance, and user experience
  • Work on significant new features and rewrite/reimplement existing ones from scratch, tackling large-scale performance optimization for hundreds of billions of events per day
  • Collaborate with distributed Platform teams and the broader Windows group, sharing knowledge and influencing architecture and design to protect millions of Windows devices

About the company

SentinelOne logo

SentinelOne

Cybersecurity

SentinelOne is a leading provider of autonomous security solutions for endpoint, cloud, and identity environments. Founded in 2013 by a team of cybersecurity and defense experts, SentinelOne revolutionized endpoint protection with a new, AI-powered approach. Our platform unifies prevention, detection, response, remediation, and forensics in a single, easy-to-use solution. Our endpoint security product is designed to protect your organization's endpoints from known and unknown threats, including malware, ransomware, and APTs. It uses artificial intelligence to continuously learn and adapt to new threats, providing real-time protection and automated response capabilities. SentinelOne's approach to security is designed to help organizations secure their assets with speed and simplicity. We provide the ability to detect malicious behavior across multiple vectors, rapidly eliminate threats with fully-automated integrated response, and adapt their defenses against the most advanced cyberattacks. We are recognized by Gartner in the Endpoint Protection Magic Quadrant as a Leader and have enterprise customers worldwide. Our customers include some of the world's largest companies in various industries such as finance, healthcare, government, and more. At SentinelOne, we understand that cybersecurity is a constantly evolving field and that the threats facing organizations are becoming increasingly sophisticated. That's why we are committed to staying at the forefront of technology and innovation and providing our customers with the best protection against cyber threats. We offer our customers a wide range of services, including threat hunting, incident response, and incident management. Our team of experts is available to assist you 24/7 and can help you respond to and manage cyber incidents quickly and effectively. To learn more about our products and services, please visit our website at www.sentinelone.com or contact us to schedule a demo.

Company details

Company typeLarge
IndustryCybersecurity
Company size1001 - 5000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

About Us

At SentinelOne, we’re redefining cybersecurity by pushing the limits of what’s possible—leveraging AI-powered, data-driven innovation to stay ahead of tomorrow’s threats.

From building industry-leading products to cultivating an exceptional company culture, our core values guide everything we do. We’re looking for passionate individuals who thrive in collaborative environments and are eager to drive impact. If you’re excited about solving complex challenges in bold, innovative ways, we’d love to connect with you.

What are we looking for?

We are seeking a highly skilled and experienced Software Engineer with a strong background in low-level C++ programming and a deep understanding of Windows OS, to help us in developing our Endpoint Protection product, the core part of our business, and to join one of our Platform group teams. (We're currently growing multiple teams and are open to new colleagues with a wide variety of backgrounds within Windows development!).

The Platform group teams are in charge of some of our most complex low-level areas, such as:

  • Windows agent’s Anti-Tampering (self-protection from malware attempting to harm the agent), network sensors, device control, and other kernel-side features involving both research and development,
  • usermode security & agent infrastructures - e.g. installers, logging, services such as communication layer & interfaces for our Windows agent, for improving the quality, performance & stability of the agent and making the user experience smoother.

By joining our group, you will collaborate with talented engineers who are leading a feature through the whole development lifecycle. Your work will have an impact on millions of endpoints in one of the mainstream areas of the EPP/EDR agent of SentinelOne - a product recognized 5x-in-a-row as Gartner MQ Leader, scoring highly in many MITRE Att&ck assessments, valued by users in Gartner Peer Insights and more.

What will you do?

  • As a new member of one of our distributed development teams, you will work in both user-mode & kernel-mode, and deal with a large variety of fields.
  • You will have the chance to design, develop primarily in modern C++ (23), test and debug the most complicated real-world problems (often unseen before). In order to successfully deal with this challenge, you will continuously enrich your knowledge and experience with Windows OS internals & Kernel, Endpoint Protection, and Endpoint Detection & Response eco-system.
  • Our teams design and execute significant new features, as well as rewrite and reimplement the existing ones from scratch. You will also deal with extraordinary performance & optimization challenges, given the scale of our cybersecurity SW (handling hundreds of billions of events every day).
  • Your work will influence the security of tens of millions of Windows devices, that we protect at enterprise & government customers across the globe (incl. 4 of Fortune 10 and hundreds of Global 2000).
  • You’ll also be encouraged to share knowledge within both Platform teams and the broader Windows group.

What skills & knowledge should you bring?

  • Multiple years of experience as a software engineer in the area of lowlevel programming using modern C++ (or using C and a willingness to learn modern C++)
  • Hands-on experience and in-depth understanding of Windows OS design & internals, Windows low-level development, with debugging of Windows applications and familiarity with related standard debugging and profiling tools
  • Previous experience working on a production-grade product with a wide-scale deployment
  • Great communication skills and the ability to work both independently and with peers from different time zones, problem-solving and out-of-the-box thinking
  • Attention to detail and high coding standards
  • An advantage: experience with Windows Kernel and Windows Drivers development, experience in security-oriented development, with reversing or malware analysis

Why us?

Because you will work on real-world problems with risks of millions of dollars (protecting against Ransomware and other threats) and make an impact by preventing our customers from appearing in global news after being attacked. You will be joining a technologically cutting-edge project and will be able to influence the architecture, design, and building of our core platform. You will meet extraordinary challenges and work with the very BEST in the industry.

On top of that we offer you

  • Flexible working hours, this is a 100% remote role based within Spain; we provide optional membership in major coworking chains
    • Currently for this role in Spain we are able to consider only candidates that are already eligible to work in the EU at the time of applying
    • Optionally for those willing to relocate to the Czech Republic relocation assistance is available for any candidates that are already eligible to work in the EU at the time of applying
  • Generous employee stock plan in the form of grant of RSUs (restricted stock units), not options; 4 years vesting with 1 year cliff and then quarterly, stock refresh yearly
  • Yearly bonus depending on the performance of the company, paid out in 2 installments
  • 30 Days of Paid Annual Leave
  • Flexible Paid Sick Days
  • Pension insurance contribution
  • Premium Life Insurance covered by S1
  • Premium Medical & Dental Insurance covered by S1
  • Meal, Transport & Homeoffice allowance of total 440 EUR/month
  • Global gender-neutral Parental Leave (16 weeks, beyond the leave provided by the local laws) & Grandparent Leave
  • Volunteering paid day off & Additional paid Company holidays off (e.g. 4 days in 2022)
  • Global Employee Assistance Program (confidential counseling related to both personal and work life matters)
  • LinkedIn Learning platform for Hard/Soft skills Training & Support for your further educational activities/trainings
  • Above-standard referral bonus

& Additional country-specific benefits to Spain

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles. 

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

C++ Developer Related jobs

Other jobs at SentinelOne

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.