Build endpoint security for an intelligent opponent

Liarbird is a fast-growing, venture-backed Australian startup building the security foundation for an AI-native world. We stop advanced threats that other solutions can’t see, inside critical infrastructure, government and enterprise networks - whether the adversary is human, AI-enabled or fully autonomous.

The endpoint agent is where our product meets the adversary. It has to recognise hostile behaviour, resist tampering and operate safely inside the systems our customers protect. We are looking for a Endpoint-security engineer with deep Rust capability to own that product domain.

This is not a role for implementing a fixed roadmap. You will work with the founders, threat specialists, customers and other engineers to decide which problems are worth solving, test assumptions early, and carry the strongest solutions through delivery and operation.

What you will do

Own the endpoint product domain end to end, from discovery and architecture through secure delivery, operation and learning from production.

Evolve cross-platform agent architecture for high-assurance Windows and Linux environments without compromising safety, performance, resilience or the team’s ability to change the product.

Create endpoint telemetry, response and self-protection capabilities that are difficult to fingerprint and grounded in how capable adversaries actually operate.

Build a continuous learning loop between threat research, red-team testing, customer evidence and product decisions.

Establish the engineering system required to ship trusted host-resident software: disciplined testing, secure release and update mechanisms, observability, incident learning and assurance evidence.

Raise the technical and product bar through clear judgement, pragmatic standards, thoughtful hiring and mentoring as the team grows.

What you will bring

A track record of owning production endpoint, security-agent or other host-resident software where compatibility, safety, upgradeability and failure behaviour matter.

Deep production Rust expertise, including careful reasoning about ownership, concurrency, unsafe code, FFI, performance and cross-platform trade-offs.

Strong low-level operating-system knowledge on Windows, Linux or ideally both, including user-mode and kernel-mode boundaries.

A working model of sophisticated post-intrusion tradecraft and the ability to connect adversary objectives to endpoint detection and response.

Product judgement: you can frame problems, separate evidence from assumptions, explore alternatives and find the smallest credible path to an outcome.

Fluency with AI-assisted development. You already build with modern AI tooling, or are hungry to, and want to push how far it goes inside a security-critical codebase.

Clear communication with engineers, domain experts, customers and founders.

Useful, but not required

Windows drivers, filtering or instrumentation frameworks; Linux eBPF, LSM, kernel modules or comparable mechanisms.

Security agents, EDR or software designed to operate in the presence of an active adversary.

Signed-driver, attestation or constrained release processes; macOS endpoint security; containers or workload security.

Experience building for government, critical infrastructure, disconnected or other high-assurance environments.

How we work

We work either hybrid in the Canberra and NSW South Coast region, or fully remote within Australia, with daily virtual stand-ups and quarterly time together face-to-face. Expect some travel for customer engagements, team gatherings and conferences. We are deliberately small, give engineers direct context, and expect them to use that context to make good decisions rather than wait for tickets.

What we offer

A starting salary in the range of AUD $140,000-$160,000.

Meaningful equity. As one of our first engineers you join with a genuine stake in the company and substantial upside as we grow.

Real ownership of the endpoint product domain and a direct line into product strategy.

A small, senior team and a short path from adversary evidence or customer insight to a shipped product decision.

Top-tier AI tooling, a professional development budget, and opportunities to publish research or present at conferences.

A state-of-the-art laptop and the kit you need to do your best work.