Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole.

The Security Engineering team protects Anthropic's AI systems and maintains the trust of our users and society. We define the authentication architecture for our training infrastructure, design the cryptographic foundations that protect model weights and training data, and drive the developer security program that shapes how engineers build and ship software.

Responsibilities:

• Build and maintain identity and secrets management systems, including credential issuance, rotation, and workload authentication across our multi-cloud environments
• Contribute to cluster security controls including RBAC policies, namespace isolation, workload identity, and pod security
• Implement and maintain cloud security controls including IAM, network segmentation, VPC architecture, and encryption across our multi-cloud and on-prem environments
• Design and implement secure development frameworks and libraries that make secure coding the path of least resistance for our engineering teams, including service to service authentication, serialization libraries, and tool proxies.
• Harden CI/CD pipelines against supply chain attacks through isolated build environments, signed attestations, dependency verification, and automated policy enforcement
• Identify and remediate security gaps through code review, threat modeling, and hands-on debugging
• Contribute to continuous cloud security posture management using infrastructure-as-code scanning, misconfiguration detection, and automated remediation

Requirements:

• At least 5 years of software engineering experience implementing and maintaining security-relevant systems in production
• Bachelor's degree in Computer Science or equivalent industry experience
• Strong programming skills in Python or at least one systems language such as Go or Rust
• Experience contributing to cloud security controls
• A track record of taking ownership of problems end to end, from identifying the issue to shipping and monitoring the fix
• Clear communication skills and the ability to work collaboratively across engineering teams
• Low ego and high empathy, with a genuine interest in helping teammates succeed
• Passion for AI safety and the role security engineering plays in building trustworthy AI systems

Preferred Qualifications:

• Contributions to developer security tooling including SAST, dependency scanning, or secure build infrastructure
• Familiarity with Kubernetes security primitives including RBAC, namespaces, network policies, and admission controllers
• Experience with cloud security posture management tooling, infrastructure-as-code security scanning, or automated remediation
• Experience with network security and isolation techniques including east-west controls, traffic inspection, and cloud network policy
• Experience with eBPF for security monitoring and enforcement, or developing kernel security policies
• Experience building secrets management or workload authentication systems, including familiarity with protocols such as OAuth 2.0, OIDC, SAML, or SPIFFE/SPIRE
• Background building or operating security systems in environments that support research workflows and rapid iteration

Benefits:

• Competitive compensation and benefits
• Optional equity donation matching
• Generous vacation and parental leave
• Flexible working hours
• Lovely office space in which to collaborate with colleagues

How to Apply:

If you're interested in this role, please submit your application through our website. We look forward to hearing from you!

Note: Anthropic is an equal opportunity employer and welcomes applications from diverse candidates.

XML job scraping automation by YubHub

Key Responsibilities

• Own the security architecture for Saronic's AWS environments, including multi-account strategy, network segmentation, identity architecture, and data protection across commercial AWS and AWS GovCloud

• Design and maintain secure-by-default Terraform modules and IaC standards that teams adopt as the standard path, enforcing least privilege, secure defaults, and compliance requirements

• Implement preventive controls (SCPs, permission boundaries, policy-as-code) and detective controls (Config rules, CloudTrail analysis, GuardDuty) as a unified, layered security model

• Design and enforce IAM patterns across AWS accounts, services, and workloads including least-privilege policies, permission boundaries, cross-account access, federation, and service-to-service authentication

• Implement and govern secrets management using tools such as AWS Secrets Manager or Vault, integrated into CI/CD and runtime environments

• Partner with DevOps and Platform Engineering to embed security into CI/CD pipelines, infrastructure provisioning, and deployment workflows

• Build automated compliance validation into infrastructure pipelines and replace manual security gates with automated guardrails wherever possible

• Create self-service security tooling and patterns that allow teams to operate with speed and autonomy while maintaining compliance

• Integrate logging, monitoring, and alerting across cloud infrastructure to validate control effectiveness and detect misconfigurations or threats

• Build and tune cloud-native detections using CloudTrail, GuardDuty, Config, and SIEM integrations

• Support incident response for cloud security events, drive root-cause analysis, and translate findings into improved guardrails and controls

Required Qualifications:

• 6+ years of hands-on experience in cloud security engineering, infrastructure security, DevSecOps, or a closely related security engineering role

• Expert-level proficiency with Terraform, including module design, state management, policy-as-code, and managing complex multi-environment configurations

• Deep expertise in AWS security services and architecture, including IAM, Organizations, SCPs, Control Tower, CloudTrail, Config, GuardDuty, Security Hub, KMS, and VPC security

• Demonstrated experience building security guardrails and reusable infrastructure patterns that engineering teams adopt without friction

• Strong experience with CI/CD pipeline security, IaC review processes, and automated compliance validation

• Experience operating in AWS GovCloud or FedRAMP-regulated cloud environments

• Strong proficiency in Python, Go, Rust, or equivalent languages for building security automation and tooling

• Ability to obtain and maintain a security clearance

Preferred Qualifications:

• Experience in defence, aerospace, robotics, autonomy, or other high-assurance environments

• Experience designing multi-account AWS landing zones and organisational security architectures from the ground up

• Hands-on experience with Kubernetes security, container security, and service mesh security in cloud-native environments

• Familiarity with NIST SP 800-171, NIST SP 800-53, FedRAMP, or Cloud Computing SRG Impact Levels

• Experience with infrastructure drift detection, automated remediation, and continuous compliance monitoring

• Relevant certifications such as AWS Security Specialty, AWS Solutions Architect Professional, HashiCorp Terraform Associate/Engineer, CCSP, or CISSP

Additional Information

Benefits: Medical Insurance: Comprehensive health insurance plans covering a range of services. Saronic pays 100% of the premium for employees and 80% for dependents. Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care. Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents. Time Off: Generous PTO and Holidays. Parental Leave: Paid maternity and paternity leave to support new parents. Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses. Retirement Plan: 401(k) plan. Stock Options: Equity options to give employees a stake in the company’s success. Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage. Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline. Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office

This role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3).

XML job scraping automation by YubHub

Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

About the Team

The Security Engineering team protects Anthropic's AI systems and maintains the trust of our users and society. We define the authentication architecture for our training infrastructure, design the cryptographic foundations that protect model weights and training data, and drive the developer security program that shapes how engineers build and ship software.

The team works across several areas that collaborate closely: identity and secrets management, developer security and supply chain, infrastructure security, and secure frameworks. You will support one of these areas while contributing across others, with your focus shaped by your strengths and the team's priorities.

Responsibilities:

• Build and maintain identity and secrets management systems, including credential issuance, rotation, and workload authentication across our multi-cloud environments
• Contribute to cluster security controls including RBAC policies, namespace isolation, workload identity, and pod security
• Implement and maintain cloud security controls including IAM, network segmentation, VPC architecture, and encryption across our multi-cloud and on-prem environments
• Design and implement secure development frameworks and libraries that make secure coding the path of least resistance for our engineering teams, including service to service authentication, serialization libraries, and tool proxies.
• Harden CI/CD pipelines against supply chain attacks through isolated build environments, signed attestations, dependency verification, and automated policy enforcement
• Identify and remediate security gaps through code review, threat modeling, and hands-on debugging
• Contribute to continuous cloud security posture management using infrastructure-as-code scanning, misconfiguration detection, and automated remediation

You may be a good fit if you have:

• At least 5 years of software engineering experience implementing and maintaining security-relevant systems in production
• Bachelor's degree in Computer Science or equivalent industry experience
• Strong programming skills in Python or at least one systems language such as Go or Rust
• Experience contributing to cloud security controls
• A track record of taking ownership of problems end to end, from identifying the issue to shipping and monitoring the fix
• Clear communication skills and the ability to work collaboratively across engineering teams
• Low ego and high empathy, with a genuine interest in helping teammates succeed
• Passion for AI safety and the role security engineering plays in building trustworthy AI systems

Strong candidates may also have:

• Contributions to developer security tooling including SAST, dependency scanning, or secure build infrastructure
• Familiarity with Kubernetes security primitives including RBAC, namespaces, network policies, and admission controllers
• Experience with cloud security posture management tooling, infrastructure-as-code security scanning, or automated remediation
• Experience with network security and isolation techniques including east-west controls, traffic inspection, and cloud network policy
• Experience with eBPF for security monitoring and enforcement, or developing kernel security policies
• Experience building secrets management or workload authentication systems, including familiarity with protocols such as OAuth 2.0, OIDC, SAML, or SPIFFE/SPIRE
• Background building or operating security systems in environments that support research workflows and rapid iteration

Deadline to apply:

None. Applications will be reviewed on a rolling basis.

Logistics

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience. Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work. We think AI systems like the ones we're building have enormous social and ethical implications. We think this makes representation even more important, and we strive to include a range of diverse perspectives on our team.

Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of unsolicited messages or requests for sensitive information.

XML job scraping automation by YubHub