Skip to content
AnthropicAnthropicSan Francisco, CA

Technical Cyber Threat Investigator

Investigates and disrupts misuse of AI systems for cyber threats like malware and influence operations. Develops detection techniques and intelligence reports, requiring proficiency in SQL, Python, and threat intelligence frameworks.

230k – 290k/yr
HybridSecurity Engineering

About the role

Responsibilities

  • Detect and investigate attempts to misuse Anthropic's AI systems for cyber operations, including influence operations, malware development, social engineering, and other adversarial activities
  • Develop abuse signals and tracking strategies to proactively detect sophisticated threat actors across our platform
  • Create actionable intelligence reports on new attack vectors, vulnerabilities, and threat actor TTPs targeting LLM systems
  • Conduct cross-platform threat analysis grounded in real threat actor behavior, using open-source research, dark web monitoring, and internal data
  • Utilize investigation findings to implement systematic improvements to our safety approach and mitigate harm at scale
  • Study trends internally and in the broader ecosystem to anticipate how AI systems could be misused, generating and publishing reports
  • Build and maintain relationships with external threat intelligence partners, information sharing communities, and government stakeholders
  • Work cross-functionally to build out our threat intelligence program, establishing processes, tools, and best practices

You may be a good fit if you

  • Have demonstrated proficiency in SQL and Python for data analysis and threat detection
  • Have experience with large language models and understanding of how AI technology could be misused for cyber threats
  • Have subject matter expertise in abusive user behavior detection, such as influence operations, coordinated inauthentic behavior, or cyber threat intelligence
  • Have experience tracking threat actors across surface, deep, and dark web environments
  • Can derive insights from large datasets to make key decisions and recommendations
  • Have experience with threat actor profiling and utilizing threat intelligence frameworks (MITRE ATT&CK, etc.)
  • Have strong project management skills and ability to build processes from the ground up
  • Possess excellent communication skills to collaborate with cross-functional teams and present to leadership

Strong candidates may also have

  • Experience working with government agencies or in regulated environments
  • Background in AI safety, machine learning security, or technology abuse investigation
  • Experience building and scaling threat detection systems or abuse monitoring programs
  • Active Top Secret security clearance

Logistics

Annual Salary: $230,000 — $290,000 USD

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience.

Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Skills

SQLPythonLLMsMitre Att&CkThreat IntelligenceDark Web MonitoringData AnalysisThreat Actor ProfilingAbuse DetectionCyber Threat Intelligence
OpenAI

Software Engineer, Scaled Abuse

OpenAISan Francisco, CA

Build and operate backend and data systems for real-time fraud/abuse detection, investigation, and enforcement at OpenAI. Requires 5+ years backend engineering and 2+ years fraud/abuse experience.

230k – 385k/yr
On-site5+ YOESecurity Engineering
OpenAI

Software Engineer, Cyber Frontier

OpenAISan Francisco, CA

Build AI-powered security products and evaluation systems that help trusted defenders respond to cyber threats while ensuring responsible deployment of frontier AI models.

230k – 325k/yr
HybridSecurity Engineering
OpenAI

Security Engineer, Insider Threat Detection & Response

OpenAISan Francisco, CA

Security Engineer focused on insider threat detection and response, building automated detection workflows, tuning rules, and partnering on investigations for AI infrastructure. Requires 5+ years experience in detection/response, OS/cloud familiarity, and scripting proficiency.

230k – 385k/yr
On-site5+ YOESecurity Engineering
OpenAI

Software Engineer - Privacy & Compliance

OpenAISan Francisco, CA +1

Builds backend systems to enforce data privacy, automate compliance, and implement distributed authorization mechanisms. Requires 5+ years experience in backend/infrastructure with languages like Python or Go, plus familiarity with privacy regulations.

230k – 385k/yr
On-site5+ YOESecurity Engineering
OpenAI

Software Engineer, Privacy

OpenAISan Francisco, CA

Builds secure backend systems for privacy and security in API products and consumer apps. Conducts threat modeling, privacy reviews, compliance audits, and incident response while collaborating cross-functionally.

230k – 325k/yr
HybridSecurity Engineering