C/C++ Windows Driver Engineer

We are building a team of engineers to develop and maintain driver-level components that implement security and data-control business logic using Windows kernel APIs. You will own the design, implementation, and release of kernel-mode and user-mode components that run on Windows 7 through Windows 11 and Windows Server 2016–2025.

Key Responsibilities

File System & Process Monitoring

• Design and implement MiniFilter drivers to intercept and control file I/O (create, read, write, delete) on specified directories or processes
• Use ObCallbacks and PsSetCreateProcessNotifyRoutine to track process lifecycle events (creation, suspension, termination)
• Detect and report changes to file permissions and ACLs
• Control I/O operations for chosen file-system objects, including regular files and named pipes
• Control I/O for portable devices including USB flash drives and external HDDs

Network Traffic Monitoring & Filtering

• Build NDIS and WFP/FWPM components to monitor new and closed connections on selected network interfaces
• Implement traffic filtering by IP address, port, and domain name
• Instrument protocol-level monitoring for HTTP, SMB, and RDP anomaly detection
• Monitor DNS queries on selected network interfaces

Portable Device Control

• Implement WPD, USB Storage, and SCSI drivers to track I/O on newly mounted devices
• Detect device mount/unmount events and enforce access control by serial number or device class
• Manage autorun behavior for removable media

Data Stream Monitoring

• Inspect and filter streamed files using IO Sockets and Stream Filter frameworks
• Implement VFS integration for virus-scan policy enforcement
• Redirect data streams to cloud storage
• Monitor clipboard I/O and temporary file lifecycle

Quality, Release & Maintenance

• Write unit tests and inline documentation to specification
• Run functional testing using Kernel Address Sanitizer (KASAN) and Driver Verifier
• Profile and stress-test components with Windows Performance Analyzer and ETW
• Prepare release-quality, EV Code Signing Certificate–signed binaries registered in the MS Hardware Developer Program
• Provide ongoing bug fixing and maintenance across supported OS versions

Required Qualification

• 3+ years of Windows kernel-mode driver development in C/C++
• Hands-on experience with at least two of: MiniFilter, WFP/FWPM, NDIS, WPD/USB Storage, SCSI
• Strong understanding of Windows kernel internals: IRPs, IOCTL, memory management, synchronization primitives
• Experience with Driver Verifier, WinDbg/kd, and crash-dump analysis
• Familiarity with code-signing workflows and the MS Hardware Developer Program (HLK/WHQL)
• Proficiency writing unit tests and technical documentation

Nice to Have

• Experience with ObCallbacks, ETW providers, and Windows Performance Analyzer
• Exposure to security products (EDR, DLP, antivirus) or filesystem filter drivers for cloud sync
• Familiarity with Windows Server environments (2016–2025)
• Kernel Address Sanitizer (KASAN) or static-analysis tooling experience