# Senior Security Engineer

**Company:** [Chainguard](https://hotfix.jobs/companies/chainguard)
**Location:** Remote
**Role:** Security Engineering
**Salary:** $130k – $160k/yr
**Experience:** 5+ years
**Skills:** Python, TypeScript, GCP, Git, CI/CD, SSO, SCIM, Okta, DevOps, Infrastructure As Code
**Posted:** 2026-06-12

> Own AI platform posture end-to-end: administer Claude/ChatGPT enterprise controls, build MCP servers and agentic tooling, harden security against prompt injection and data leakage, and create spend dashboards. Requires 5+ years security/IT/DevOps experience plus hands-on AI platform administration.

## Job Description

## What you'll do

### Stay ahead of the roadmap
- Continuously monitor Claude and ChatGPT product roadmaps, release notes, and vendor communications to anticipate platform changes
- Translate upcoming features into proactive configuration, policy, and enablement decisions
- Maintain active relationships with Anthropic and OpenAI account teams; flag ToS updates, data processing agreement changes, and acceptable use policy shifts

### Own AI platform administration and configuration governance
- Provide expert-level administration of AI console environments across both platforms
- Manage Claude and ChatGPT organizational settings files using Git, version-controlled, reviewed, and deployed like infrastructure
- Own API key lifecycle management and secrets hygiene for all AI integrations
- Manage SSO/SCIM provisioning for AI platforms; ensure access is tight, auditable, and clean

### Build financial visibility and usage intelligence
- Develop token tracking and financial dashboards so leadership knows what AI costs by team, use case, and month
- Build anomaly detection on AI spend
- Produce regular usage trend reports and ROI framing for leadership

### Develop MCP servers and agentic AI tooling
- Build and maintain internal MCP servers that extend AI capabilities into workflows securely
- Be the in-house subject matter expert on agentic AI builds including architecture, risk, and failure modes
- Write code in Python and/or TypeScript for dashboards, automation, and MCP server development

### Harden our AI security posture
- Identify and mitigate prompt injection risks in internal AI-powered tools
- Ensure no sensitive or regulated data (PII, PCI, PHI) flows into AI prompts; architect the guardrails
- Maintain awareness of AI-specific incident response options

### Integrate with AI governance and enablement programs
- Serve as IT Engineering's primary liaison to the AI Adoption Committee
- Participate actively in the AI Working Group
- Partner closely with the Governance & Trust team as their technical counterpart

## What we're looking for

### Required
- Outstanding interpersonal skills and team-first mentality
- 5+ years in security engineering, IT engineering, or a DevOps role with meaningful security responsibility
- Hands-on DevOps background: Git-based config management, CI/CD, infrastructure-as-code mindset applied to platform administration
- Direct, hands-on experience administering Claude (Anthropic) and/or ChatGPT (OpenAI) at an organizational level including console administration, managed settings, and enterprise controls
- Working knowledge of AI risk factors: prompt injection, data leakage, agentic failure modes, and incident response options
- Comfortable writing production-quality code in Python and/or TypeScript
- Experience with GCP and Cloud native environments
- Familiarity with SSO/SCIM provisioning in SaaS-heavy environments (Okta or similar)
- Strong written communication skills

### Nice to Have
- Experience building or operating MCP (Model Context Protocol) servers
- Background in financial/spend analytics tooling or BI dashboard development
- Prior experience operating in a governance or compliance-adjacent role
- Experience breaking an AI integration badly enough to have opinions about how to do it right

## Similar roles

- [Senior Security Engineer](https://hotfix.jobs/jobs/58cd9f20-ffb4-4e16-a7d0-e1001914a55f) - Chainguard - Remote - $130k – $150k/yr
- [Senior Security Engineer](https://hotfix.jobs/jobs/99e2a151-a656-4094-818f-979ecc125b37) - Chime - New York, NY - $130k – $250k/yr
- [Senior Software Engineer, Server Security](https://hotfix.jobs/jobs/b4220420-4d9c-4513-9c61-8eac97487464) - MongoDB - New York, NY - $126k – $248k/yr
- [Senior Security Analyst, Customer Assurance](https://hotfix.jobs/jobs/157d6a84-eda7-4365-93ab-baf6b406c89f) - Plaid - New York, NY - $134k – $214k/yr
- [Senior Security Automation Engineer](https://hotfix.jobs/jobs/2e4e1230-924e-4c2c-8df4-cdee5ef22cdb) - Clickhouse - Remote - $125k – $205k/yr

**Apply:** https://hotfix.jobs/jobs/630bb407-e99d-4b50-b161-b05a56c055c2
**Canonical:** https://hotfix.jobs/jobs/630bb407-e99d-4b50-b161-b05a56c055c2