Skip to content
AnthropicAnthropicSan Francisco, CA

Safeguards Enforcement Analyst, Account Takeover & Credential Abuse

Safeguards Enforcement Analyst focused on account takeover and credential abuse. Investigate compromise incidents, design remediation workflows, partner with engineering on detection, enforce AI usage policies, and develop scalable enforcement programs for platform safety.

245k – 285k
HybridSecurity Engineering

About the role

Key Responsibilities

  • Investigate credential-compromise incidents across first-party and third-party platforms, tracing actor behavior across accounts and surfaces.
  • Design and operate remediation workflows for compromised accounts: revocation, customer notification, and standards for restoring access.
  • Partner with Engineering and Data Science teams to improve how we separate compromised-customer traffic from willful abuse.
  • Enforce usage policies with a focus on detecting and mitigating potentially harmful use of AI systems.
  • Work with threat intelligence on emerging credential-abuse patterns and the actors behind them.
  • Support the Safeguards policy design team by providing detailed feedback on policy gaps based on real enforcement scenarios.
  • Keep up to date with emerging AI policy enforcement best practices, and use these to inform our decision-making and workflows.
  • Write the policy framework for compromise scenarios, including cases where Anthropic can't independently verify a customer's security posture.
  • Act as the enforcement SME when account compromise intersects with active abuse investigations.

Minimum Qualifications

  • Experience in trust and safety, fraud investigation, security operations, or a related field.
  • Subject matter expertise in one or more of: account takeover, credential abuse, session security, or incident response.
  • Experience designing or operating enforcement, remediation, or customer-recovery flows — not just detection.
  • Comfort using data (SQL or similar tools) to trace actor behavior across accounts and to measure what's working.
  • A thoughtful perspective on the tension between protecting the platform and restoring access for legitimate compromised customers.
  • Strong written communication skills, with experience producing clear briefs about messy incidents for technical and non-technical stakeholders.
  • Excellent judgment and the ability to collaborate with team members while navigating rapidly evolving priorities and workstreams.

Preferred Qualifications

  • Familiarity with credential-theft ecosystems or threat intelligence tooling.
  • Experience working with fraud/risk vendors (e.g., device or network intelligence platforms).
  • Experience with API platform abuse specifically, not just consumer-account ATO.
  • A deep interest in AI safety and responsible technology development.
  • Experience writing effective prompts for generative AI systems in a content review or enforcement context.

Compensation & Logistics

  • Annual Salary: $245,000—$285,000 USD
  • Minimum education: Bachelor’s degree or an equivalent combination of education, training, and/or experience.
  • Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Skills

Trust And SafetyFraud InvestigationSecurity OperationsAccount TakeoverCredential AbuseIncident ResponseSQLThreat IntelligencePolicy EnforcementAi Safety
Perplexity

Offensive Security Engineer

PerplexitySan Francisco, CA +1

Offensive Security Engineer conducts red team operations, penetration testing, and AI/ML attack simulations on cloud infrastructure, applications, and pipelines. Requires 5+ years experience in offensive security, expertise in cloud/web/K8s security, and custom tooling in Python/Go.

250k – 350k
Hybrid5+ YOESecurity Engineering
Scale AI

Security Engineer, Detection & Response

Scale AINew York, NY +3

Senior Security Engineer focused on building detection systems, incident response automation, and maturing telemetry pipelines across cloud environments. Requires 5+ years in detection engineering or security operations and production-grade coding skills.

238k – 297k
On-site5+ YOESecurity Engineering
Scale AI

Security Engineer, Infrastructure

Scale AISan Francisco, CA +2

Secures large cloud environments (AWS, Azure, GCP), orchestrates and secures compute/GPU clusters, and reviews infrastructure as code like Terraform. Requires expertise in cloud security, Kubernetes, NodeJS/TypeScript, and IaC tools.

238k – 297k
On-siteSecurity Engineering
Semgrep

Security Research Manager, Coverage Team

SemgrepSan Francisco, CA +4

Leads a team of security researchers to develop high-quality detection rules for secrets, code, and supply chain vulnerabilities. Drives roadmap, automation with AI, and improves coverage accuracy; requires 5+ years security tech lead experience and 2+ years people management.

255k – 319k
Hybrid5+ YOESecurity Engineering
OpenAI

Technical Threat Investigator, Threat Intel Engineering

OpenAISan Francisco, CA +1

Conducts deep investigations into sophisticated threat actors misusing AI models and targeting OpenAI, leveraging OSINT, telemetry, and scripting to identify disruptions. Builds scalable tooling and automations to enhance detection and safety, partnering cross-functionally for impact.

234k – 385k
RemoteSecurity Engineering