Who you are

• 5+ years in product security or endpoint-focused consulting, with hands-on testing of Windows-based agents or EDR/AV products
• Experience building fuzzers or integrating existing fuzzing frameworks for native code
• Experience and capability in building automated test harnesses from the ground up
• Strong Windows OS internals knowledge, especially user-mode hooking and Win32 API behaviors
• Proficient in C/C++ and Python, with solid experience calling with Windows APIs
• Experience reviewing and validating security findings
• Comfortable researching and suggesting security features end-to-end and creating technical content
• Rust development experience, particularly around FFI or unsafe code
• Published tooling or research in vulnerability discovery, fuzzing, and/or automated test frameworks
• Hands-on experience with CI platforms (GitHub Actions, Jenkins) to automate security workflows

What the job involves

• Halcyon’s goal is to deliver an anti-ransomware solution that breaks new ground in what a security product can achieve
• Aligned with this mission, we’re hiring a Senior Product Security Engineer to ensure our most innovative defenses make it into every release
• These cutting-edge capabilities will keep our customers ahead in the fight against ransomware
• Endpoint Hardening & Testing
• Design and implement security test harnesses from scratch to simulate real-world ransomware behavior
• Develop and integrate fuzzers (libFuzzer, AFL/WinAFL, or custom tools) for automated crash and vulnerability discovery
• Build user-mode hooking instrumentation and explore EDR bypass techniques to exercise agent internals
• Vulnerability Research & Triage
• Triage, reproduce, and analyze security findings against our agent and libraries
• Perform root-cause analysis on crashes or logic flaws; build minimal PoC exploits or reproducer cases
• Platform Expertise
• Deep understanding of Windows internals (ring transitions, memory management, Win32 API) with focus on user-mode security hooks
• Collaborate on driver-level or API-level integrations when necessary (no kernel-driver dev required)
• Play a critical role in developing cutting-edge ransomware protections and security features that will have a real-world impact
• Work alongside highly skilled security researchers and engineering teams building next-generation security solutions
• Have the opportunity to shape the process by which security innovations transition from research into real-world implementations
• Be part of a company deeply committed to stopping ransomware and protecting customers

Benefits

• A Remote Native Global Team - As a remote first, completely distributed team, we recognize great talent can exist anywhere. We invite you to apply to a job you’re interested in and we'll work a plan to meet your needs.
• Health & Wellness - We offer comprehensive health benefits to meet you and your family’s needs, including 100% covered Medical, Dental and Vision insurance for you and all your dependents.
• Competitive Compensation Packages - We offer competitive compensation packages with equity, depending on position, along with a generously matched retirement plan, unlimited PTO, paid sick time and holidays
• Future Planning & Time Off - We offer paid time off to take care of yourself! Relax and recharge on us. We also include paid parental leave, short & long term disability insurance, life insurance and more