Principal Embedded Software Engineer

Principal Kernel Engineer (Windows NT / Kernel Security)

Remote (US-Based)

Salary: $200,000-$275,000 + 10% Bonus + Equity

A fast-growing cybersecurity company backed by leaders in endpoint security is seeking a Principal Kernel Engineer with deep expertise in Windows internals to join their distributed engineering team. This team is developing an advanced anti-ransomware solution aimed at enterprise and mid-market environments, with a focus on real-time protection, detection, and response at the kernel level.

This is a hands-on role focused on Windows kernel and NT system internals, with an emphasis on delivering stable, secure, and high-performance components capable of countering today’s most sophisticated ransomware threats.

Responsibilities:

• Design and implement advanced features within a Windows kernel-mode agent for endpoint security.
• Prototype new functionality and translate concepts into production-quality code.
• Independently lead development of new kernel features, stability improvements, and performance enhancements.
• Collaborate with reverse engineers, detection engineers, and backend developers to ship resilient and efficient protections.
• Guide technical strategy around NT-based kernel development and Windows driver architecture.

Required Qualifications:

• Strong background in Windows kernel-mode development using C++.
• Experience writing multithread-safe code in both kernel- and user-mode.
• Prior experience shipping at least one production-quality Windows NT driver.
• Proficiency with Win32 APIs and detailed knowledge of Windows NT kernel internals.
• Experience debugging complex kernel memory issues (e.g., memory corruption, spinlock contention).
• Strong written and verbal communication skills.
• Ability to mentor peers and contribute to team-wide technical direction.

Nice-to-Have Experience:

• Familiarity with Portable Executable (PE) format and reverse engineering techniques.
• Experience building Windows Mini-Filter or WFP (Windows Filtering Platform) callout drivers.
• Experience working with kernel telemetry, analytics, or system instrumentation pipelines.
• Understanding of C++ interop and modern driver development practices.
• Familiarity with Windows HLK testing and signing pipelines.