Skip to content
CognitionCognitionSan Francisco, CA

Security Engineer

Security Engineer responsible for securing AI agent execution, infrastructure, and product surfaces at an applied AI lab building Devin and Windsurf. Requires deep security engineering, software engineering fundamentals, and cloud/web security expertise.

260k – 300k/yr
On-site7+ YOESecurity Engineering

About the role

What You'll Accomplish

  • Secure the agent execution surface: Design and harden the sandboxing, isolation, and runtime controls that let Devin safely execute untrusted code and use tools across long-horizon tasks.
  • Own product and infrastructure security: Lead threat modeling, secure design reviews, and vulnerability management across Devin, Windsurf, and the underlying infrastructure they run on.
  • Build security tooling that engineers actually use: Create internal systems for secrets management, identity and access, dependency security, and detection that integrate naturally into how the team ships.
  • Lead incident response and detection: Build the detection pipeline, run incident response, and turn every event into systemic improvements.
  • Drive customer trust: Partner with go-to-market and legal teams to support compliance and customer trust initiatives. Build the controls that customers expect from a tool deeply embedded in their engineering workflow.

Exceptional Candidates Have Demonstrated

  • Deep security engineering: Hands-on experience across product security, infrastructure security, and detection and response.
  • Strong software engineering fundamentals: Security at Cognition means writing real code; proficiency in Python, Rust, Go, and comfort owning complex systems codebases.
  • Cloud security expertise: Practical experience securing Kubernetes, cloud platforms (AWS, GCP, or Azure), and multi-tenant compute environments.
  • Web security expertise: Hands-on experience hardening complex, modern web applications.
  • Threat modeling and adversarial thinking: You can look at a system and quickly identify how it breaks; you think like an attacker and design like a defender.
  • Incident response: Calm, methodical, and effective under pressure; experience leading incidents end to end and driving the fixes that follow.
  • Comfort with novel problem spaces: You are excited rather than intimidated by the security challenges unique to autonomous agents and AI-native developer tools.
  • Relevant industry experience: Prior experience at a frontier AI lab, applied AI company, or developer tools company.
  • Degree from a top-tier university: BS, MS, or equivalent in Computer Science, Mathematics, Engineering, or a related technical discipline from a highly selective program.

Compensation & Benefits

  • Base Salary: $260,000 - $300,000 + significant early-stage equity
  • Medical, Dental, Vision: Fully paid for you and your dependents
  • 401(k): Company match included
  • Perks: Private chef, cozy slippers, endless snacks, and more

Skills

PythonRustGoKubernetesAWSGCPAzureCloud SecurityWeb SecurityThreat ModelingIncident ResponseSandboxingSecrets ManagementIdentity And Access Management
OpenAI

Systems Software Engineer, Security, First Party Hardware

OpenAISan Francisco, CA

Security Engineer owning end-to-end hardware, firmware, and system security for OpenAI's first-party AI accelerators and servers. Requires 7+ years in hardware/embedded security and strong systems programming skills.

266k – 445k/yr
Hybrid7+ YOESecurity Engineering
Replit

Product Security Architect

ReplitFoster City, CA

Defines and implements secure architecture for multi-tenant SaaS platform, leads threat modeling, mentors engineering teams on security best practices, and conducts code reviews. Requires 8+ years in product security with expertise in auth protocols and SaaS security.

250k – 380k/yr
Hybrid8+ YOESecurity Engineering
OpenAI

Offensive Security Engineer, Agent Security

OpenAISan Francisco, CA +3

Principal-level Offensive Security Engineer conducts red/purple team operations and penetration testing on AI agent products like Codex and Operator, hunting vulnerabilities in app-infra-model interactions and collaborating with defensive teams to strengthen security.

278k – 490k/yr
Remote7+ YOESecurity Engineering
Abridge

Senior Manager, Enterprise Security

AbridgeSan Francisco, CA

Lead the strategy, roadmap, and team for enterprise security at a healthcare AI company. Own IAM/Zero Trust, endpoint protection, SaaS security, automation, and secure AI adoption while partnering cross-functionally in a 0-to-1 greenfield environment.

240k – 299k/yr
Hybrid8+ YOESecurity Engineering
Material Security

Sr. Manager, Security Engineering

Material SecuritySan Francisco, CA

Lead the Security Engineering team responsible for defending the organization and product infrastructure. Manage Application, Infrastructure, and Corporate security while staying hands-on with alert triage, detection, and architectural design.

240k – 280k/yr
Remote7+ YOESecurity Engineering