Description
Join our team to support the development of a cross-platform agent on Windows and macOS, working closely with the dev team to solve deep OS-level challenges.
LayerX Security
LayerX’s user-first browser security platform turns any browser into the most protected & manageable workspace, by providing real-time monitoring and governance over users’ activities on the web, protecting the enterprise’s applications, data, and devices from web-borne risks. All with near-zero impact on user experience.
LayerX is backed by top cybersecurity VCs - Glilot Capital, Kmehin, INT3, Guidestar Ventures
Responsibilities
Research Windows and macOS kernel internals to support agent capabilities (process injection, hooking, IPC, privilege management)
Develop and maintain kernel drivers and user-mode components
Reverse-engineer OS components to understand undocumented behaviors and APIs
Investigate OS security mechanisms (SIP on macOS, PPL/LSA on Windows) to ensure correct agent operation
Translate research findings into practical, production-ready implementations alongside the dev team
Requirements
5+ years of experience in low-level systems development
Strong proficiency in C, C++, Rust, and/or Assembly
Deep understanding of Windows and macOS internals:
Kernel architecture and driver models (WDM/WDF on Windows, IOKit/DriverKit on macOS)
Memory management and syscall layer
OS security primitives on both platforms
Experience with reverse engineering using IDA Pro or Ghidra
Familiarity with kernel debugging tools (WinDbg, LLDB)
Advantages:
Experience with vulnerability research
EDR/AV evasion research (defensive context)
Prior work building agents, monitoring tools, or security products on Windows and/or macOS