Designs and implements security frameworks, policies, and controls for agentic AI systems, including threat modeling, isolation techniques, and safety monitoring. Requires strong systems programming, cloud security expertise, and cross-functional collaboration in a fast-paced environment.
293k – 385k/yr
HybridSecurity Engineering
About the role
Responsibilities
Architecting security controls for agentic AI – design, implement, and iterate on identity, network, and runtime-level defenses (e.g., sandboxing, policy enforcement) that integrate directly with the Agent Infrastructure stack.
Building production-grade security tooling – ship code that hardens safety monitoring pipelines across agent executions at scale.
Collaborating cross-functionally – work daily with Agent Infrastructure, product, research, safety, and security teams to balance security, performance, and usability.
Influencing strategy & standards – shape the long-term Agent Security roadmap, publish best practices internally and externally, and help define industry standards for securing autonomous AI.
Requirements
Strong software-engineering skills in Python or at least one systems language (Go, Rust, C/C++), plus a track record of shipping and operating secure, high-reliability services.
Deep expertise in modern isolation techniques – experience with container security, kernel-level hardening, and other isolation methods.
Clear, concise communication that bridges engineering, research, and leadership audiences; comfort influencing roadmaps and driving consensus.
Bias for action & ownership – you thrive in ambiguity, move quickly without sacrificing rigor, and elevate the security bar company-wide from day one.
Cloud security depth on at least one major provider (Azure, AWS, GCP), including identity federation, workload IAM, and infrastructure-as-code best practices.
Familiarity with AI/ML security challenges – experience addressing risks associated with advanced AI systems (nice-to-have but valuable).
Builds and operates Host Assurance platform to establish trust in bare-metal hosts for OpenAI's global infrastructure. Requires strong software engineering, deep expertise in PKI/HSM/cryptography/secure boot/host attestation, and ability to work across hardware-software boundaries at scale.
293k – 385k/yr
HybridSecurity Engineering
Security Engineer, Detection and Response
OpenAISan Francisco, CA
Builds and operates detection and response systems to protect OpenAI's sensitive assets across endpoints, cloud, Kubernetes, and datacenter infrastructure. Requires hands-on threat detection, incident response experience, and expertise in modern cloud platforms and automation.
293k – 385k/yr
On-siteSecurity Engineering
Researcher, Automated Red Teaming
OpenAISan Francisco, CA +1
Leads automated red teaming efforts to discover failure modes in frontier AI models, focusing on cyber, bio, and loss-of-control risks. Builds scalable systems and partners across teams to implement mitigations reducing catastrophic harm.
295k – 445k/yr
On-siteSecurity Engineering
Security Engineer, Detection & Response
AnthropicSan Francisco, CA +3
Lead detection and response engineering efforts, building tooling and processes to monitor threats, investigate incidents, and coordinate responses across Anthropic's technology stack. Requires 5+ years in detection engineering, incident response, or threat hunting.
300k – 405k/yr
Hybrid5+ YOESecurity Engineering
Threat Collections Engineer
AnthropicSan Francisco, CA +1
Builds threat detection infrastructure, data pipelines, and tooling for threat intelligence team. Requires strong Python/SQL skills, experience with orchestration tools, YARA rules, and external API integrations.