Responsibilities: Conduct in-depth code reviews and static analysis to identify and mitigate security vulnerabilities in our applications Design and implement secure coding guidelines and best practices for development teams Collaborate closely with development teams to integrate security practices throughout the CI/CD pipeline Perform threat modeling and risk assessments for applications, developing mitigation strategies for potential risks Manage vulnerability tracking and remediation efforts, providing guidance to development teams Support incident response activities related to application security Stay current on emerging security threats and trends in cloud-native technologies and AI, continuously enhancing our security measures Evaluate and secure software supply chains, including producing and maintaining Software Bills of Materials (SBOMs) Address security concerns specific to AI and machine learning models, with a focus on the OWASP LLM Top 10

Basic Qualifications: Bachelor's degree in Computer Science, Cybersecurity, or a related field 3-5 years of experience in application security, with a strong focus on code security practices Deep understanding of secure coding practices, application security frameworks, and common vulnerabilities (e.g., OWASP Top 10) Proficiency in Python or Rust programming languages and experience with secure coding practices in these languages Experience securing CI/CD pipelines and implementing DevSecOps practices Familiarity with software supply chain security and SBOM generation tools Experience with security testing tools (e.g., Burp Suite, OWASP ZAP) and static/dynamic code analysis Understanding of AI/ML security implications, particularly those outlined in the OWASP LLM Top 10 Excellent communication skills, able to explain complex security issues to both technical and non-technical audiences

Preferred Skills and Experience: Experience with cloud platforms (e.g., GCP, AWS, Azure) and their security features Relevant security certifications (e.g., CSSLP, OSWE) Background in data privacy and compliance regulations relevant to cloud-native applications and AI systems Experience with GitOps and infrastructure-as-code security Familiarity with federated learning and privacy-preserving machine learning techniques Experience in building custom security tooling to enhance and automate security processes Interest in leveraging AI to automate security tasks and improve efficiency Contributions to open-source security projects or tools Experience in securing AI/ML models and data pipelines

Compensation and Benefits: $200,000 - $340,000 USD Base salary is just one part of our total rewards package at xAI, which also includes equity, comprehensive medical, vision, and dental coverage, access to a 401(k) retirement plan, short & long-term disability insurance, life insurance, and various other discounts and perks.

XML job scraping automation by YubHub

Frontend Engineer, Identity

Location

San Francisco

Employment Type

Full time

Location Type

On-site

Department

Applied AI

Compensation

• $230K – $325K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

About the Team

The Applied team at OpenAI brings cutting-edge AI technology into the hands of millions of people and businesses worldwide. We build and operate products such as ChatGPT, Sora, and the OpenAI API, delivering state-of-the-art multimodal capabilities across text, image, audio, and video. Our work spans product engineering, large-scale inference, and platform infrastructure — all designed to safely and reliably support global usage.

About the Role

As a Frontend Engineer on OpenAI’s Identity team, you’ll build the user-facing experiences that make secure access to OpenAI simple, clear, and trustworthy for organizations. You’ll design and implement core identity flows — such as sign-in, account management, permissions, and admin experiences — that enable enterprises to adopt OpenAI’s products with confidence.

You’ll work closely with design, product, security, and backend teams to translate complex identity systems like SSO, RBAC, and identity federation into intuitive, reliable interfaces. Your work will directly shape how users and administrators understand and manage access across OpenAI’s products, helping unlock secure, large-scale enterprise adoption of AI.

This role is based in San Francisco, California. There may be relocation options available.

In this role, you will:

• Build scalable, reusable frontend components and patterns for core identity experiences, including sign-in flows, account management, permissions, and admin surfaces.

• Partner closely with backend and security engineers to deliver end-to-end identity capabilities such as SSO, RBAC, SCIM provisioning, and delegated access through clear, intuitive interfaces.

• Translate complex authentication and authorization systems (e.g., SAML, OIDC, OAuth) into user experiences that are understandable, reliable, and trustworthy for both admins and end users.

• Help define frontend architecture, standards, and patterns for a shared identity platform used across OpenAI’s products.

• Build internal tools and surfaces that enable teams across OpenAI to integrate, manage, and reason about identity and access control effectively.

• Collaborate with Product, Design, Security, and Go-To-Market partners to turn ambiguous enterprise requirements into high-quality, user-centered interfaces.

You might thrive here if you:

• Have at least 5+ years of frontend engineering experience building and maintaining production-grade web applications, with a focus on usability, scalability, and long-term maintainability.

• Bring deep frontend expertise and genuine enthusiasm for frontend frameworks, performance optimization, latency, and building reusable, composable UI systems.

• Are excited to take ownership of critical access flows, helping scale and improve sign-in, permissions, and account experiences across OpenAI’s products.

• Enjoy working closely with cross-functional partners — including product, design, security, and go-to-market teams — to shape thoughtful, user-centered solutions.

• Have experience evolving or re-architecting production systems to support new capabilities and increased scale.

• Care deeply about user experience and take pride in crafting interfaces that make complex identity and access systems feel simple and trustworthy.

• Thrive in fast-moving environments where re

XML job scraping automation by YubHub