Skip to content
AnthropicAnthropicSan Francisco, CA

Platform Security Engineering - OpenBMC

Founding engineer building and securing OpenBMC firmware for x86/Arm server fleets. Own production firmware, manageability features, and security hardening including secure boot, attestation, and threat modeling.

405k – 405k
Hybrid8+ YOESecurity Engineering

About the role

What You'll Do

Production and manageability:

  • Design, build, and ship OpenBMC firmware and manageability features for x86 and Arm (including GPU) platforms, from bring-up through production, using Yocto/OpenEmbedded
  • Build the management stack on DMTF/OCP standards (MCTP, PLDM, SPDM, Redfish, RDE) and IPMI/KCS: sensors, telemetry, inventory, logging, RAS
  • Implement BMC-to-BIOS/host communications, eSPI/LPC, thermal/fan/power management (PMBus)
  • Work the hardware/firmware boundary: I2C/I3C, SPI, PCIe, SMBus, device trees, U-Boot, Linux

Security and hardening:

  • Own the BMC security posture: secure and measured boot, root of trust, attestation (SPDM), authenticated update (PLDM FW Update), rollback protection, attack-surface reduction
  • Lead threat modeling and secure design reviews; run coordinated vulnerability disclosure with vendors and the upstream community
  • Build verification tooling: static analysis, fuzzing, firmware extraction, CI gating

Who You Are

  • 8+ years of experience in systems security, with at least 5 years focused on firmware and hardware security (firmware, bootloaders, and OS-level security)
  • Strong technical cross-functional leadership skills, direction setting
  • Hands-on OpenBMC/BMC firmware experience on x86 and/or Arm, from bring-up through production with hands-on D-Bus/sdbusplus
  • Strong C/C++ and Python, deep Linux user-space/kernel fundamentals, and Yocto/OpenEmbedded proficiency
  • A security mindset applied to firmware, not bolted on afterward
  • Upstream contributions to OpenBMC, U-Boot, DMTF, or OCP
  • Working knowledge of out-of-band and in-band management, the relevant DMTF specs, and the device interfaces they run over
  • Strong debugging and a track record of shipping reliable, well-tested code
  • Clear communication across internal teams and external vendors
  • Ability to work effectively across hardware and software boundaries
  • Knowledge of NIST firmware security guidelines and hardware security frameworks, specifically SP 800-193 and 800-147/155

Strong candidates may also have

  • Hardware roots of trust and attestation: Caliptra, OCP S.A.F.E., TPM/HRoT, SPDM
  • Memory-safe systems code in Rust or Zig
  • Firmware vulnerability research, reverse-engineering, or fuzzing
  • Previous work with AI/ML infrastructure security

Logistics

  • Minimum education: Bachelor’s degree or an equivalent combination of education, training, and/or experience
  • Required field of study: A field relevant to the role as demonstrated through coursework, training, or professional experience
  • Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.
  • Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

Skills

OpenbmcCC++PythonYoctoOpenembeddedLinuxU-BootD-BusSdbusplusMctpPldmSpdmRedfishRde
Anthropic

Software Security Engineering Manager, Secure Frameworks

AnthropicSan Francisco, CA +1

Lead the Secure Frameworks Research team at Anthropic to build high-leverage security libraries and frameworks (cryptographic, serialization, authorization) that prevent vulnerabilities in AI model development. Manage engineers, drive adoption across teams, and balance security rigor with development velocity; requires 5+ years security/software engineering and 3+ years managing security teams.

405k – 485k
Hybrid8+ YOESecurity Engineering
Anthropic

Platform Hardware Security Engineer

AnthropicSan Francisco, CA +2

Design and implement security architectures for bare-metal infrastructure including secure boot chains, attestation systems, and firmware security for AI training hardware. Requires expertise in low-level systems security, cryptographic protocols, and hardware root of trust technologies.

405k – 405k
Hybrid8+ YOESecurity Engineering
Anthropic

Threat Intel Manager, Model Exploitation & Fraud

AnthropicSan Francisco, CA

Lead the Model Exploitation & Fraud team in Threat Intelligence at Anthropic. Set strategy, hire and manage technical investigators, direct complex investigations into AI model distillation, account abuse, and fraud networks, and engage with U.S. government partners. Requires management experience with senior ICs, domain expertise in scaled abuse, and proficiency in SQL/Python.

375k – 455k
Hybrid8+ YOESecurity Engineering
Anthropic

Threat Intel Manager, CBRN-E & Advanced Weapons

AnthropicSan Francisco, CA +2

Lead and build Anthropic's CBRN-E & Advanced Weapons threat intelligence team. Investigate and disrupt AI misuse for chemical, biological, radiological, nuclear, explosives, and novel weapons development; manage investigators, engage government partners, and inform AI safety strategies. Requires deep biosecurity/weapons expertise, team leadership, and LLM knowledge.

375k – 455k
Hybrid7+ YOESecurity Engineering
OpenAI

Global Detection and Response Lead

OpenAISan Francisco, CA

Leads global cybersecurity detection and response operations at OpenAI, overseeing monitoring, incident response, and team building. Requires 10+ years in cybersecurity, deep expertise in detection engineering and observability stacks, and US security clearance eligibility.

347k – 490k
On-site10+ YOESecurity Engineering