Skip to content
Trail of BitsTrail of BitsUnited States

Security Engineer, Research & Engineering

Designs and builds security tools and frameworks in Rust, C++, Python for AI/ML, compilers, and low-level systems. Contributes to open-source, performs code reviews, and communicates findings via blogs and presentations.

125k – 185k
RemoteSecurity Engineering

About the role

Responsibilities

  • Design and implement security-focused software tools and frameworks across AI/ML security, compiler-based tools, and more.
  • Contribute to open-source security projects and develop internal tools.
  • Analyze complex security challenges and develop practical solutions.
  • Perform security code reviews and enhancements.
  • Implement secure CI/CD pipelines with GitHub Actions.
  • Conduct AI/ML security research and tooling.
  • Perform root-cause analysis and debugging on low-level issues.
  • Communicate technical concepts via blog posts, presentations, and publications.
  • Decompose tasks, make engineering estimates, and lead feature development.

Requirements

  • Strong software development skills in Rust, C++, and/or Python (occasionally Go or Java).
  • Knowledge of AI/ML systems and security challenges.
  • Familiarity with AI tools like Claude Code, Cursor.
  • Secure development practices.
  • Ability to learn new languages/frameworks quickly.
  • Understanding of computer security principles and vulnerabilities.
  • Experience with GitHub, CI/CD, automated testing.
  • Ability to work independently in remote teams.
  • Strong communication skills.

Preferred

  • Open-source security contributions.
  • Commercial-grade software development.
  • Low-level systems knowledge (memory management, OS internals).
  • Compiler technology, program analysis, or binary analysis.
  • CTF or security challenges participation.
  • Multiple languages/paradigms.
  • Academic papers or public speaking.

Compensation

US base salary: $125,000 - $185,000, plus benefits and bonuses.

Skills

RustC++PythonGoJavaGitHubCI/CDAi/Ml SecurityCompiler TechnologyBinary Analysis
Applied Intuition

Product Security Engineer

Applied IntuitionSunnyvale, CA

Embeds security into product design and development lifecycle by analyzing architectures, conducting threat modeling and assessments, maturing vulnerability management, and guiding developers on secure practices. Requires 5+ years in product/application security with expertise in cloud, containers, and automation tools.

125k – 160k
On-site5+ YOESecurity Engineering
Applied Intuition

Cloud Security Engineer

Applied IntuitionSunnyvale, CA

Secures multi-cloud infrastructure (AWS, Azure, GCP, OCI) with emphasis on Kubernetes hardening, IAM enforcement, CSPM using Wiz, and IaC security. Requires 5+ years experience, deep AWS and Kubernetes security expertise.

125k – 160k
On-site5+ YOESecurity Engineering
Socket

Threat Analyst

SocketUnited States

Analyzes software supply chain threats using AI scanners, conducts malware analysis and threat hunting, builds automation tools, and integrates research into products to protect open source ecosystems. Requires 3+ years in security operations and master's degree.

126k – 170k
Remote3+ YOESecurity Engineering
Pinterest

Security Software Engineer II, Detection and Response

PinterestSan Francisco, CA

Build and improve detection alerts, automation, logging pipelines, and internal tooling to identify and respond to security threats at Pinterest. Requires strong incident response, SIEM, threat hunting, and scripting skills in cloud environments, plus demonstrated responsible use of AI.

124k – 255k
Remote5+ YOESecurity Engineering
Mintlify

Security & Compliance Operations Manager

MintlifySan Francisco, CA

Own and run Mintlify's end-to-end security and compliance programs (SOC 2, ISO 27001/42001, GDPR, Microsoft SSPA) as the first dedicated GRC Program Manager. Administer Drata, manage audits/vendors/evidence, handle customer-facing compliance, and coordinate with engineering.

120k – 180k
On-site3+ YOESecurity Engineering