Senior Linux/MAC Software Engineer

Who is Forcepoint?

Forcepoint simplifies security for global businesses and governments. Forcepoint’s all-in-one, truly cloud-native platform makes it easy to adopt Zero Trust and prevent the theft or loss of sensitive data and intellectual property no matter where people are working. 20+ years in business. 2.7k employees. 150 countries. 11k+ customers. 300+ patents. If our mission excites you, you’re in the right place; we want you to bring your own energy to help us create a safer world. All we’re missing is you!

We are seeking a highly skilled Senior macOS/Linux Developer with deep expertise in macOS/Linux internals to design, develop, and maintain advanced Data Loss Prevention (DLP) and network security products. The ideal candidate will have a strong understanding of macOS system architecture, kernel-level programming, and network protocols, with a passion for building secure, high-performance solutions to protect sensitive data and mitigate cyber threats.

Key Responsibilities:

Design and implement macOS-specific components for DLP and network security products, ensuring seamless integration with macOS internals.

Develop low-level system tools using Apple's modern security frameworks (Endpoint Security, Network Extension, System Extensions) to monitor and control data flows, network traffic, and system activities.

Collaborate with cross-functional teams (e.g., network security, device control, and cloud integration) to deliver robust security solutions.

Implement and maintain network filtering, packet inspection, and proxy capabilities on macOS using Network Extension Framework and App Proxy Provider.

Ensure compliance with macOS security frameworks (e.g., Endpoint Security Framework, System Extensions, Network Extension Framework) and Apple's code signing and entitlements model.

Debug and troubleshoot complex system-level issues related to macOS performance, security, and compatibility — including IPC (XPC, MQTT/ZeroMQ), daemon lifecycle (launchd), and code injection.

Stay updated on macOS updates, Apple API deprecations (e.g., kext System Extensions transition), security vulnerabilities, and industry trends to ensure product resilience and compliance.

Contribute to code reviews, documentation, and best practices for secure software development in C++14, Objective-C++, and Swift.

Work closely with QA teams to ensure robust testing and validation of security features using Google Test and Catch2 frameworks.

Required Qualifications:

Bachelor’s or Master’s degree in Computer Science, Engineering, or a related field (or equivalent experience).

5+ years of software development experience, with at least 3 years focused on macOS internals.

Deep knowledge of macOS system architecture, including kernel programming, system calls, and macOS-specific APIs.

Proficiency in C, C++, Objective-C, and/or Swift for macOS development.

Strong understanding of network protocols (TCP/IP, HTTP/HTTPS, DNS, etc.) and network security principles.

Experience with macOS security frameworks (e.g., Endpoint Security Framework, System Extensions, Network Extension Framework).

Hands-on experience developing DLP solutions, such as data monitoring, file access control, or content filtering.

Proficiency with Apple's modern macOS security frameworks — Endpoint Security Framework for file system and process event interception, and Network Extension Framework (App Proxy Provider) for network traffic filtering and proxy capabilities; familiarity with legacy kernel extensions (kexts) is a plus but not required.

Experience with system-level debugging tools such as lldb, kdebug/ktrace, and Instruments for diagnosing performance, security, and compatibility issues in macOS daemons and system extensions.

Knowledge of encryption, secure communication protocols, and data protection techniques.

Strong problem-solving skills and ability to debug complex system-level issues.

Excellent communication and collaboration skills to work in a fast-paced, team-oriented environment.

Preferred Qualifications:

Experience with cross-platform security solutions (macOS, Windows, Linux).

Familiarity with cloud-based security services and integration (e.g., AWS, Azure).

Knowledge of macOS virtualization technologies (e.g., Hypervisor Framework).

Experience with threat detection, malware analysis, or intrusion prevention systems.

Understanding of compliance standards (e.g., GDPR, HIPAA, PCI-DSS) and their impact on DLP solutions.

Contributions to open-source projects or a strong portfolio of macOS-related development work.

Nice-to-Have Skills:

Experience with scripting languages (e.g., Python, Bash) for automation and testing.

Familiarity with Agile/Scrum methodologies and DevSecOps practices.

Background in reverse engineering or vulnerability research on macOS systems.

What We Offer:

Competitive salary and benefits package (health, dental, vision, etc.).

Opportunity to work on cutting-edge cybersecurity technologies.

Collaborative and innovative work environment with opportunities for growth.

Flexible work arrangements (remote/hybrid options, depending on location).

Access to the latest tools and technologies for macOS development.

Application Deadline: [Insert Deadline, if applicable]

Don’t meet every single qualification? Studies show people are hesitant to apply if they don’t meet all requirements listed in a job posting. Forcepoint is focused on building an inclusive and diverse workplace – so if there is something slightly different about your previous experience, but it otherwise aligns and you’re excited about this role, we encourage you to apply. You could be a great candidate for this or other roles on our team.

Applicants must have the right to work in the location to which you have applied.