Skip to content
Thinking Machines LabThinking Machines LabSan Francisco, CA

Software Engineer, Security

Embeds security into product development by partnering with teams on threat modeling, implementing controls like auth and input validation, building automation tools, and mitigating AI-specific risks in a collaborative environment.

350k – 475k/yr
On-siteEntry levelSecurity Engineering

About the role

What You’ll Do

  • Partner with product and research teams to embed security into the development lifecycle: threat modeling, design reviews, and secure defaults for new features.
  • Design and implement security controls across our product stack (authentication, authorization, session management, input validation, etc.).
  • Build and maintain security tooling and automation for engineers: secure frameworks and templates, CI/CD checks, dependency management, and vulnerability detection.
  • Collaborate with researchers to identify and mitigate AI-specific product risks, such as model abuse, prompt injection, data leakage, or misuse of capabilities.
  • Improve observability and detection for security-relevant events: access anomalies, abuse patterns, and suspicious behavior in production.

Skills and Qualifications

Minimum qualifications:

  • Bachelor’s degree or equivalent experience in computer science, engineering, or similar.
  • Proficiency in at least one backend language (we use Python or Rust).
  • Strong generalist software engineering background and ability to review production code for security risks.
  • Hands-on experience securing web apps and APIs especially auth flows, access control, secrets management, input validation, and data protection.
  • Familiarity with common vulnerability classes and prevention frameworks; experience hardening prototypes into production.
  • Comfort with modern cloud infrastructure and understanding how application concerns intersect with infrastructure.
  • Comfort operating across the stack and owning projects end-to-end.
  • Thrive in a highly collaborative environment involving many, different cross-functional partners and subject matter experts.
  • A bias for action with a mindset to take initiative to work across different stacks and different teams where you spot the opportunity to make sure something ships.

Preferred qualifications:

  • Experience securing AI‑powered products or working with ML/LLM APIs and their unique threat models.
  • Background in human-computer interaction, especially where security or trust plays a central role in the user experience.
  • Strong skills in rapid prototyping and iteration, with a habit of turning ad-hoc fixes into reusable patterns and tools.
  • Open‑source security work, bug bounty write‑ups, or published tooling.

Logistics

Compensation: Depending on background, skills and experience, the expected annual salary range for this position is $350,000 - $475,000 USD.

Benefits: Thinking Machines offers generous health, dental, and vision benefits, unlimited PTO, paid parental leave, and relocation support as needed.

Skills

PythonRustSecurityThreat ModelingAuthenticationAuthorizationSecrets ManagementInput ValidationCI/CDCloud InfrastructureVulnerability DetectionPrompt InjectionAccess Control
OpenAI

Security Researcher, Agentic AI Threats

OpenAISan Francisco, CA

Identify compromise paths from future AI agents, design long-lead-time security controls, and stress-test defenses via evaluations and penetration tests. Requires deep security/infrastructure expertise plus strong software engineering skills.

293k – 405k/yr
HybridEntry levelSecurity Engineering
AfterQuery

Software Engineer - Security/Infrastructure

AfterQuerySan Francisco, CA

Build and own security infrastructure and core systems for an AI platform handling sensitive workflows. Requires 2-7 years experience with Python/Go/TypeScript, cloud environments, and production security tooling.

200k – 350k/yr
On-site2+ YOESecurity Engineering
Plaid

Software Engineer - Security Engineering

PlaidNew York, NY

Develop and maintain security capabilities for Plaid's infrastructure and sensitive data access. This role involves building and owning security services, consulting with product engineers, and assisting with incident response and security awareness programs.

189k – 243k/yr
HybridEntry levelSecurity Engineering
Fluidstack

Security Engineer, Infrastructure

FluidstackNew York, NY +2

Builds and maintains security infrastructure including SIEM, data pipelines, and integrations for EDR, SOAR, CASB across IT, OT, cloud, and data centers. Embeds security into SDLC; requires 2+ years in security tooling and cloud/virtualization experience.

170k – 220k/yr
On-site2+ YOESecurity Engineering
Everlaw

Security Engineer (Security Operations)

EverlawOakland, CA

Security Engineer triages events, responds to incidents, manages AWS security services, and improves vulnerability management/threat detection on the security operations team. Requires 1-3 years security experience, scripting (Python), Linux, and security tools like SIEM and scanners.

159k – 201k/yr
Hybrid1+ YOESecurity Engineering