Design and implement security architectures for bare-metal infrastructure including secure boot chains, attestation systems, and firmware security for AI training hardware. Requires expertise in low-level systems security, cryptographic protocols, and hardware root of trust technologies.
405k – 405k
Hybrid8+ YOESecurity Engineering
About the role
Key Responsibilities
Design and implement secure boot chains from firmware through OS initialization for diverse hardware platforms (CPUs, BMCs, switches, peripherals, and embedded microcontrollers)
Architect attestation systems that provide cryptographic proof of system state from hardware root of trust through application layer
Develop measured boot implementations and runtime integrity monitoring
Create reference architectures and security requirements for bare-metal deployments
Integrate security controls with infrastructure teams without impacting training performance
Prototype and validate security mechanisms before production deployment
Conduct firmware vulnerability assessments and penetration testing
Build firmware analysis pipelines for continuous security monitoring
Document security architectures and maintain threat models
Collaborate with software and hardware vendors to ensure security capabilities meet our requirements
Minimum Qualifications
Hands-on experience with secure boot, measured boot, and attestation technologies (TPM, Intel TXT, AMD SEV, ARM TrustZone)
Strong understanding of cryptographic protocols and hardware security modules
Experience with UEFI/BIOS or embedded firmware security, bootloader hardening, and chain of trust implementation
Proficiency in low-level programming (C, Rust, Assembly) and systems programming
Knowledge of firmware vulnerability assessment and threat modeling
Track record of designing security architectures for complex, distributed systems
Experience with supply chain security
Ability to work effectively across hardware and software boundaries
Knowledge of NIST firmware security guidelines and hardware security frameworks
Preferred Qualifications
8+ years of experience in systems security, with at least 5 years focused on firmware and hardware security (firmware, bootloaders, and OS-level security)
Experience with confidential computing technologies and hardware-based TEEs
Knowledge of SLSA framework and software supply chain security standards
Experience securing large-scale HPC or cloud infrastructure
Contributions to open-source security projects (coreboot, CHIPSEC, etc.)
Background in formal verification or security proof techniques
Experience with silicon root of trust implementations
Experience working with building foundational technical designs, operational leadership, and vendor collaboration
Previous work with AI/ML infrastructure security
Compensation & Benefits
Annual Salary: $405,000—$405,000 USD
Visa sponsorship available
Competitive compensation and benefits, optional equity donation matching, generous vacation and parental leave, flexible working hours
Lead the Secure Frameworks Research team at Anthropic to build high-leverage security libraries and frameworks (cryptographic, serialization, authorization) that prevent vulnerabilities in AI model development. Manage engineers, drive adoption across teams, and balance security rigor with development velocity; requires 5+ years security/software engineering and 3+ years managing security teams.
405k – 485k
Hybrid8+ YOESecurity Engineering
Platform Security Engineering - OpenBMC
AnthropicSan Francisco, CA +2
Founding engineer building and securing OpenBMC firmware for x86/Arm server fleets. Own production firmware, manageability features, and security hardening including secure boot, attestation, and threat modeling.
405k – 405k
Hybrid8+ YOESecurity Engineering
Threat Intel Manager, Model Exploitation & Fraud
AnthropicSan Francisco, CA
Lead the Model Exploitation & Fraud team in Threat Intelligence at Anthropic. Set strategy, hire and manage technical investigators, direct complex investigations into AI model distillation, account abuse, and fraud networks, and engage with U.S. government partners. Requires management experience with senior ICs, domain expertise in scaled abuse, and proficiency in SQL/Python.
375k – 455k
Hybrid8+ YOESecurity Engineering
Threat Intel Manager, CBRN-E & Advanced Weapons
AnthropicSan Francisco, CA +2
Lead and build Anthropic's CBRN-E & Advanced Weapons threat intelligence team. Investigate and disrupt AI misuse for chemical, biological, radiological, nuclear, explosives, and novel weapons development; manage investigators, engage government partners, and inform AI safety strategies. Requires deep biosecurity/weapons expertise, team leadership, and LLM knowledge.
375k – 455k
Hybrid7+ YOESecurity Engineering
Global Detection and Response Lead
OpenAISan Francisco, CA
Leads global cybersecurity detection and response operations at OpenAI, overseeing monitoring, incident response, and team building. Requires 10+ years in cybersecurity, deep expertise in detection engineering and observability stacks, and US security clearance eligibility.