Login Sign Up

Security Research Engineer

Qualys

2 - 5 years

Pune City

Posted: 28/04/2026

Getting a referral is 5x more effective than applying directly

Job Description

Job Description:


Job Title: Security Research Engineer


(Apple macOS Patch Catalogue Engineer Patch Content Development)


Location: Pune, India


Experience Required:

38 Years (Patch Management / Vulnerability Content / macOS Administration)


Role Overview:

We are seeking a highly skilled Apple macOS Patch Catalogue Engineer to design, develop, validate, and maintain macOS patch metadata and deployment catalogues, like enterprise patching solutions worldwide.


The role involves building an in-house macOS patch content repository covering Apple updates and third-party applications, ensuring accurate detection and installation logic, compliance reporting, and seamless deployment across enterprise environments.


Key Responsibilities:


1. Patch Catalogue Development

Research and analysis of security advisories from Apple Inc. for macOS and related products.

Create structured macOS patch metadata.

Maintain a centralised macOS patch catalogue repository.


2. macOS Update & Security Monitoring

Track releases of macOS and other supported products.


3. Detection & Compliance Logic

Must have good hands-on experience with scripts like Bash / Zsh / Python.

Familiar with macOS system profiling commands.

Must have experience with OS builds, Application bundles (.app), Package receipts (.pkg)


4. QA & Validation

Perform lab testing across supported macOS versions.

Successful installation, Rollback scenarios, Dependency handling, and non-fail- safe behaviour.

Ensure patch content does not impact system stability.


5. Third-Party macOS Application Patching

Build patch metadata for third-party macOS applications.

Create packaging workflows for DMG, PKG, and ZIP formats.



Required Skills

Strong knowledge of macOS architecture and filesystem.


Experience with:

macOS software update mechanism

PKG/DMG packaging

Launch Daemons & system services

Scripting: Bash / Python (mandatory)


Understanding of:

CVE / NVD data, Vulnerability severity scoring, Patch supersedes logic.


Experience with enterprise patching tools (preferred):

Ivanti Patch for Endpoint Manager, ManageEngine Patch Manager Plus, etc.



Good to Have Knowledge of:

Apple MDM framework

Apple Business Manager

Secure Token / FileVault handling

Understanding the differences between macOS ARM (Apple Silicon) and Intel architectures.

Experience building in-house patch management platforms.

Services you might be interested in

Improve Your Resume Today

Boost your chances with professional resume services!

Get expert-reviewed, ATS-optimized resumes tailored for your experience level. Start your journey now.

getmereferred logo Know more