TLDR

Design and maintain an in-house macOS patch metadata and deployment catalog to enable enterprise patching across Apple updates and third-party apps.

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Job Title: Security Research Engineer

(Apple macOS Patch Catalogue Engineer – Patch Content Development)

Location: Pune, India

Experience Required:

3–8 Years (Patch Management / Vulnerability Content / macOS Administration)

Role Overview:

We are seeking a highly skilled Apple macOS Patch Catalogue Engineer to design, develop, validate, and maintain macOS patch metadata and deployment catalogues, like enterprise patching solutions worldwide.

The role involves building an in-house macOS patch content repository covering Apple updates and third-party applications, ensuring accurate detection and installation logic, compliance reporting, and seamless deployment across enterprise environments.

Key Responsibilities:

1. Patch Catalogue Development

Research and analysis of security advisories from Apple Inc. for macOS and related products.

Create structured macOS patch metadata.

Maintain a centralised macOS patch catalogue repository.

2. macOS Update & Security Monitoring

Track releases of macOS and other supported products.

3. Detection & Compliance Logic

Must have good hands-on experience with scripts like “Bash / Zsh / Python”.

Familiar with macOS system profiling commands.

Must have experience with OS builds, Application bundles (.app), Package receipts (.pkg)

4. QA & Validation

Perform lab testing across supported macOS versions.

Successful installation, Rollback scenarios, Dependency handling, and non-fail- safe behaviour.

Ensure patch content does not impact system stability.

5. Third-Party macOS Application Patching

Build patch metadata for third-party macOS applications.

Create packaging workflows for DMG, PKG, and ZIP formats.

Required Skills

Strong knowledge of macOS architecture and filesystem.

Experience with:

macOS software update mechanism

PKG/DMG packaging

Launch Daemons & system services

Scripting: Bash / Python (mandatory)

Understanding of:

CVE / NVD data, Vulnerability severity scoring, Patch supersedes logic.

Experience with enterprise patching tools (preferred):

Ivanti Patch for Endpoint Manager, ManageEngine Patch Manager Plus, etc.

Good to Have Knowledge of:

Apple MDM framework

Apple Business Manager

Secure Token / FileVault handling

Understanding the differences between macOS ARM (Apple Silicon) and Intel architectures.

Experience building in-house patch management platforms.

Qualys builds advanced cloud-based IT security and compliance solutions, including the Enterprise TruRisk Management platform that empowers organizations to accurately measure and manage cyber risk. Serving businesses focused on securing their digital environments, Qualys distinguishes itself with its innovative AI-Native Risk Operations Center, enhancing overall cybersecurity operations.

View company profile

This job is no longer available

Pro members saw this job first

New jobs unlock for everyone after 24 hours. Startup Jobs Pro shows them right away, with instant alerts and salary filters. From $7/month.

Get Pro