Security Engineer
Security Engineer responsible for securing AI agent execution, infrastructure, and product surfaces at an applied AI lab building Devin and Windsurf. Requires deep security engineering, software engineering fundamentals, and cloud/web security expertise.
What You'll Accomplish
- Secure the agent execution surface: Design and harden the sandboxing, isolation, and runtime controls that let Devin safely execute untrusted code and use tools across long-horizon tasks.
- Own product and infrastructure security: Lead threat modeling, secure design reviews, and vulnerability management across Devin, Windsurf, and the underlying infrastructure they run on.
- Build security tooling that engineers actually use: Create internal systems for secrets management, identity and access, dependency security, and detection that integrate naturally into how the team ships.
- Lead incident response and detection: Build the detection pipeline, run incident response, and turn every event into systemic improvements.
- Drive customer trust: Partner with go-to-market and legal teams to support compliance and customer trust initiatives. Build the controls that customers expect from a tool deeply embedded in their engineering workflow.
Exceptional Candidates Have Demonstrated
- Deep security engineering: Hands-on experience across product security, infrastructure security, and detection and response.
- Strong software engineering fundamentals: Security at Cognition means writing real code; proficiency in Python, Rust, Go, and comfort owning complex systems codebases.
- Cloud security expertise: Practical experience securing Kubernetes, cloud platforms (AWS, GCP, or Azure), and multi-tenant compute environments.
- Web security expertise: Hands-on experience hardening complex, modern web applications.
- Threat modeling and adversarial thinking: You can look at a system and quickly identify how it breaks; you think like an attacker and design like a defender.
- Incident response: Calm, methodical, and effective under pressure; experience leading incidents end to end and driving the fixes that follow.
- Comfort with novel problem spaces: You are excited rather than intimidated by the security challenges unique to autonomous agents and AI-native developer tools.
- Relevant industry experience: Prior experience at a frontier AI lab, applied AI company, or developer tools company.
- Degree from a top-tier university: BS, MS, or equivalent in Computer Science, Mathematics, Engineering, or a related technical discipline from a highly selective program.
Compensation & Benefits
- Base Salary: $260,000 - $300,000 + significant early-stage equity
- Medical, Dental, Vision: Fully paid for you and your dependents
- 401(k): Company match included
- Perks: Private chef, cozy slippers, endless snacks, and more
Privacy Engineering Director
Lead privacy engineering initiatives across private browsing, search, and agentic products. Own complex privacy projects from definition to delivery, evolve review processes, and grow privacy engineering talent.
Staff Software Engineer, Security
Staff Security Software Engineer designing and building scalable security infrastructure, identity systems, and compliance automation platforms. Requires 8+ years software engineering experience with deep Kubernetes, Go/Rust, and cloud platform expertise.
Security Engineer, Detection & Response
Lead detection and response engineering efforts, building tooling and processes to monitor threats, investigate incidents, and coordinate responses across Anthropic's technology stack. Requires 5+ years in detection engineering, incident response, or threat hunting.