Skip to content
AirtableAirtableSan Francisco, CA

Product Security Engineer

Builds security frameworks, automated guardrails, and threat modeling for Airtable's platform, focusing on AI/LLM safety and application security. Partners with engineering teams; requires 4+ years product security experience and proficiency in JS/TS/Node.js.

187k – 260k/yr
Remote4+ YOESecurity Engineering

About the role

What you'll do

  • Develop self-service security frameworks and "paved roads" that allow engineering teams to ship secure code by default.
  • Focus on automated guardrails for common vulnerabilities, while prioritizing deep-dive design reviews into complex business logic and data isolation issues (for example, multi-tenant isolation and authorization/permission bypasses) that automated tools cannot catch.
  • Partner with product and engineering teams to review designs early, contribute to threat modeling for new features and complex initiatives, and provide clear, actionable security guidance.
  • Research emerging threats and evolving best practices, specifically regarding AI and LLM safety, and implement controls to secure these workflows.
  • Manage and evolve our approach to external penetration testing and bug bounties, driving remediation for findings and treating vulnerability management as an engineering problem.
  • Contribute to the long-term roadmaps, metrics, and strategic planning for the security team.
  • (Senior/Staff L5+) Lead complex threat modeling sessions for major product launches and define secure coding standards, and actively mentor other engineers to raise the technical security bar across the organization.

Who you are

  • 4+ years of experience in product security or application security, with experience shipping production code. Please note this is not an early career position.
  • You have a strong background in computer science or a related field, with proficiency in writing clean, maintainable code.
  • You have deep familiarity with JavaScript or TypeScript, Node.js, and modern web application frameworks, and can reason about the security implications of systems built on them.
  • You have hands-on experience securing LLM integrations and identifying prompt injection or data leakage risks.
  • You are proficient in writing and reviewing code and treat security as an engineering problem to be solved with software, not just policies.
  • You excel at communicating complex security risks to non-security stakeholders and enjoy collaborating cross-functionally to find solutions that balance security with engineering velocity.
  • You are comfortable working in a fast-paced environment, navigating ambiguity, continuously learning about emerging threats and technologies, and contributing to long-term security strategy.

Compensation (San Francisco Bay Area, Seattle, New York City, Los Angeles): $187,000—$260,000 USD base salary, plus benefits, restricted stock units, and potential incentive compensation.

Skills

JavaScriptTypeScriptNode.jsLLMsThreat ModelingPenetration TestingBug BountiesVulnerability ManagementMulti-Tenant IsolationAuthorization
Harvey

Detection & Response Security Engineer

HarveySan Francisco, CA +1

Offensive-minded blue teamer building and leading Harvey's Detection & Response program. Develop threat scenarios, detection rules, data pipelines on ClickHouse, and lead incident response for their AI platform. Requires 4+ years in security/SRE/software engineering with hands-on incident response and weakness discovery experience.

188k – 282k/yr
Hybrid4+ YOESecurity Engineering
Benchling

Enterprise Security Engineer

BenchlingSan Francisco, CA

Enterprise Security Engineer building zero trust architecture, IAM controls, and macOS MDM at a biotech AI platform. Requires 5+ years security/IAM experience with deep Okta and identity protocol expertise.

189k – 256k/yr
Hybrid5+ YOESecurity Engineering
Ramp

Security Engineer, Privacy

RampNew York, NY +1

Build privacy-focused primitives, integrate into products, partner on secure designs, and manage data retention/anonymization while tracking legal standards. Requires 4+ years software experience, 2+ years in privacy/security.

185k – 375k/yr
Hybrid4+ YOESecurity Engineering
OpenAI

Security Engineer, Infrastructure Security

OpenAISan Francisco, CA +3

Designs and builds security controls for infrastructure including GPU clusters, multi-cloud setups, datacenters, Kubernetes, and networks to protect AI models and data from advanced threats. Requires deep security expertise, cloud platform knowledge, and proactive problem-solving across on-prem and cloud environments.

184k – 385k/yr
RemoteSecurity Engineering
OpenAI

Software Engineer, Infrastructure Security

OpenAISan Francisco, CA +2

Designs and builds production-grade security services like auth systems, proxies, and key management for OpenAI's GPU clusters, multi-cloud infrastructure, and AI workloads. Requires strong software engineering in Python/Go/Rust, experience with critical security infra, and cloud security expertise.

184k – 385k/yr
RemoteSecurity Engineering