We protect and accelerate any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks.

Available Locations: Austin, TX

About the role

Cloudflare One is our SASE platform that is redefining how the world's most sophisticated organisations secure and connect their global workforce. By unifying Zero Trust Network Access (ZTNA), Secure Web Gateway (SWG), Wide Area Network (WAN) and Cloud Access Security Broker (CASB) as well as Email Security into a single, seamless SASE architecture, we are moving the industry beyond the legacy 'castle-and-moat' era.

What you'll do

We are looking for a product leader to lead the Cloudflare One portfolio. You are not someone to simply manage a steady ship; you are someone to invent the next generation of Access, Gateway, and WAN, unlocking new Total Addressable Markets (TAM) in the SASE space while executing your way into being the market leader for the current Service Addressable Market (SAM).

Desirable Skills, Knowledge, and Experience:

• A deep empathy for customers and an understanding of the fundamental shifts happening in technology, the SSE and SASE space, especially around AI

• Proven experience in a senior leadership role (e.g., former founder, Sr. Director, VP, CTO), having built and scaled both products and teams

• An entrepreneurial spirit with enterprise etiquette and a history of building things, whether in a successful venture or a passionate side project

• Proven ability to pivot instantly from technical deep-dives to high-level strategic discussions

Must-Have Skills

• 12+ years of experience in product management or a closely related role, with a focus on network and data security technologies (e.g., ZTNA, Gateways, DLP, CASB, data encryption, data classification, data privacy)

• Own the SASE product roadmap. Make tough tactical prioritization decisions while helping the company think long-term. Build trust with stakeholders by maintaining an understandable, accurate roadmap

• Partner with leaders in other departments such as Product Marketing, Marketing, Sales, and Customer Support to drive adoption with and gather feedback from customers and prospects

• Develop and nurture relationships with engineering leadership and coordinate closely to ensure successful delivery of product

• Deep understanding of the network and security landscapes, including current trends and threats, regulatory requirements, and emerging technologies

Nice to haves

• An understanding and real-world experience working with all types of channel partners (VARs, MSP, MSSP, etc)

• A Computer Science degree or equivalent in-seat experience in product roles for technical products is highly preferred

• Experience leading product integrations during post-merger acquisitions (M&A)

• Deep familiarity with Zero Trust architecture and SD-WAN markets

XML job scraping automation by YubHub

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks.

Responsibilities

As a GTM Specialist you will be responsible for growing Cloudflare One (CF1) revenue and product adoption. In this role, you will serve as the segment lead for CF1 sales. You will advise the sales leaders on opportunities and programs to grow CF1 revenue, partner with the technical sales teams, enable account executives on product positioning and competitive intelligence, grow partner engagement around CF1, form a tight feedback loop with product and PMM, and support strategic deals from discovery to close.

The ideal candidate possesses a consultative mindset, strong selling skills, and a deep technical background to drive engagement internally among the sales organization and externally with decision-makers and influencers within security, networking, and IT and operations.

Present to strategic customers as an expert of our SASE, SSE, and Email solutions.

Align Director and C-Level perceived business value with Cloudflare solutions in the transformational objectives of securing remote work, corporate network modernization, adoption of SASE/SSE, and data protection.

Develop and advise on sales strategies and pipeline generation in partnership with regional and country sales leaders.

Develop and foster strong partner relationships.

Prepare and give regular business reviews to the management team highlighting attainment progress and challenges to closing business.

Generate a succinct feedback loop with PM, PMM, Demand Generation, Enablement, Programs, and Partner Organization to deliver relevant CF1 anecdotes and data points.

Requirements

Minimum 5 years of experience selling or supporting the sales of cyber security, networking, identity management, cloud or SaaS solutions.

Technical expertise in SASE, SSE, ZTNA, SWG, CASB, DLP, SD-WAN, and Email Security or a track record of learning new technologies quickly.

Experience building territory plans, prospecting and bringing in new logos in a competitive market.

Knowledge of key market players/competitors in the software defined networking, zero trust and cybersecurity solution spaces.

Demonstrated ability to think strategically and develop/execute corresponding objectives.

Strong verbal and written communications, as well as the ability to work effectively across internal and external organizations.

Excellent presentation and public speaking skills.

Bachelor’s Degree.

Benefits

Cloudflare offers a complete package of benefits and programs to support you and your family. Our benefits programs can help you pay health care expenses, support caregiving, build capital for the future and make life a little easier and fun!

What Makes Cloudflare Special?

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare’s enterprise customers--at no cost.

Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project, we've provided services to more than 425 local government election websites in 33 states.

1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available to anyone, anywhere in the world, for free.

XML job scraping automation by YubHub

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world's largest networks that powers trillions of requests per month. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code.

What you'll do as a Specialist Solution Engineer

You will work with our clients to understand their business needs and understand their current applications landscape and access architecture with the goal of helping them develop a security posture that meets their needs while also keeping their employees and assets safe according to the most recent standards in cyber security. You will do this with the technological solutions in the Cloudflare One product portfolio, which encompasses different Zero Trust offerings, including our cutting edge Remote Browser Isolation and email security solutions.

Responsibilities

• Serve as a trusted advisor to our customers; helping them find the best solution for their business needs with Cloudflare One.
• Guide qualified prospects through the Solution Design and Proof of Concept stages of sales engagements; showing them the key capabilities of the Cloudflare One portfolio
• Work with your Sales Partners to consistently achieve Pipeline and Revenue goals
• Understand our customers IT landscape and security requirements and develop an architecture for our customers to support their business needs
• Articulate the benefits of the Cloudflare One product portfolio vs competing solutions
• Promote retention by capturing and communicating gaps in product or features

Skill Requirements

• Curiosity and Learning Agility
• 8+ years of prior Technical Sales, Systems Engineering, or related experience
• Experience interacting with senior level/executives to communicate a message of network and security transformation
• Familiar with trends in cyber security (e.g. RAT/trojans, malware, ransomware, phishing, adware, cryptomining, spam, botnets, info stealing, scareware)
• Fundamental understanding of customer network and application architectures.
• Technical curiosity and passion: Cloudflare is at the cutting edge of internet technology. It’s incumbent on us to stay up to date not only with Cloudflare’s specific products, but with industry trends.
• Detailed understanding of workflow from user to application including hybrid architectures with Azure, AWS, GCP.
• SASE concepts and Zero Trust Networking architectures
• Secure Web Gateway, CASB, DLP, DNS, DNS over HTTPS
• IdP/authentication, SAML, OTP
• SaaS application integration and tenant controls
• VPN and remote access challenges
• SIEM and log analytics platforms
• Client OS fundamentals and software distribution
• Ability to jump in with hands-on configuration when needed
• Ability to manage a project, work to deadlines, and prioritize between competing goals

Other desirable skills areas include:

• Routing, subnetting, split tunnels. SD-WAN, local internet breakout
• End user and application security risks
• DDoS, malware, phishing, viruses
• Knowledge of competitive market around CDN providers, Web application Firewall, Remote access solutions, Next generation Firewalls, CASB solutions , DDOS mitigations solutions, SD-WAN solutions , Secure Gateway solutions

Ideally knowledge of Cloudflare ZTNA solutions such as Teams, Access, Gateway, and Browser Isolation

What Makes Cloudflare Special?

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014, we've equipped more than 2,400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work, technology already used by Cloudflare’s enterprise customers--at no cost. Athenian Project: In 2017, we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free, so that their constituents have access to election information and voter registration. Since the project, we've provided services to more than 425 local government election websites in 33 states. 1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster, more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released.

Here’s the deal - we don’t store client IP addresses never, ever. We will continue to abide by our privacy commitment and ensure that no user data is sold to advertisers or used to target consumers.

Sound like something you’d like to be a part of? We’d love to hear from you!

This position may require access to information protected under U.S. export control laws, including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer. We are committed to diversity, equity, and inclusion.

XML job scraping automation by YubHub

At Cloudflare, we are on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

As a Senior Professional Services Consultant for Zero Trust Services/SASE and Network Services, you are an individual contributor working in the post-sales landscape, responsible for the technical execution of solutions and guidance to our customers to get the most value possible from their Cloudflare investment.

Responsibilities:

Plan and deliver timely and organized services for customers, ensure customers see the full value in Cloudflare’s products and advice on product best practices.

Gather business and technical requirements, use cases and any other information required to build, migrate and deliver a solution on behalf of the customer and transition the Cloudflare working environment to the customer.

Produce a Solution Design, HLD, LLD, databuilds, procedures, scripts, test plans, drawings, deployment plan, migration plan, as-builts, and any other artifacts necessary to deliver the solution and transition smoothly into the customer’s technical teams.

Implement changes on behalf of the customer in the Cloudflare environment following the customer’s change management process.

Provide guidance to the customer to configure their CPEs and integration points.

Troubleshoot implementation issues and collaborate with Customer Support, Engineering and other teams to assist technical escalations.

Contribute towards the success of the organization through knowledge sharing activities such as contributing to internal and external documentation, answering technical Q&A, and helping to iterate on best practices.

Support building operational assets like templates, automation scripts, procedures, workflows, etc.

Experience might include a combination of the skills below:

5+ years of experience working in a customer-facing technical implementation or onboarding team, security engineering team, security operations center or other highly technical team

Layers and protocols of the OSI model, such as TCP/IP, TLS, DNS, HTTP

Deep understanding of Internet and Security technologies such as SWG, Sandboxing, Firewalls, DLP, and VPNs

Deep understanding of Zero Trust technologies such as Zero Trust Network Access (ZTNA), Secure Web Gateway (SWG), Remote Browser Isolation (RBI), Data Loss Prevention (DLP), CASB and Cloud Email Security

Deep understanding of SSO, ADFS, LDAP and SAML and the role of the IdP for SSO.

Security aspects of an internet property, such as Firewalls, WAFs, Bot Management, Rate Limiting, (M)TLS

Performance aspects of an internet property, such as Speed, Latency, Caching, HTTP/2, TLSv1.3

Network transformation technologies such as MPLS, SD-WAN or WAN Optimization

Ability to manage a project, work to deadlines, and prioritize between competing demands

Demonstrated technical experience (hands-on-keyboard) with:

Experience working with Reverse & Forward proxies with Content Filtering & DLP technologies

Software distribution & deployment in Microsoft, Mac and Linux environments

Detailed working knowledge of web based security, network segmentation, security proxies, Firewalls and NGFWs, SSL/IPSec and SSL/TLS VPN appliances & services, etc

Windows & Linux Server system administration

Windows, MacOS and Linux client endpoints troubleshooting

Experience debugging Network connectivity issues using Network Troubleshooting Tools

Preferred but not mandatory:

Software distribution via Mobile Device Management platforms

Experience with Microsoft Active Directory, GPO, AzureAD an Intune

Experience with Zero Trust Implementation and deep understanding of the Zero Trust Frameworks like NIST will be a huge plus

Experience implementing or understanding of regulatory requirements such as PCI DSS, HIPAA, and SOC-2

Security skills and certifications such as CISSP, GCIA GCIH, GCFA, GCFE, CCIE, CCNP, JNCIE or MCSE will be a huge plus

XML job scraping automation by YubHub

As a collaborative problem-solver, you are comfortable working across teams—from executives to engineers—to ensure robust security controls and compliance. You excel at conducting security investigations, analyzing complex events and alerts, and developing actionable metrics. Your familiarity with modern security frameworks, such as MITRE ATT&CK and Cyber Kill Chain, empowers you to identify and mitigate threats proactively. You are detail-oriented, organized, and adept at multitasking, thriving in environments that require prioritization and agility.

You are committed to ongoing learning, staying current with emerging security technologies and frameworks. Your experience spans cloud security (AWS, GCP, Azure), offensive security, and incident response. You enjoy participating in audits and assessments, contributing to a culture of continuous improvement. With strong communication skills and an inclusive mindset, you foster trust and collaboration across diverse teams. If you’re ready to make an impact at the forefront of cybersecurity innovation, Synopsys is the place for you.

Design, deploy, and manage enterprise-grade security solutions including CASB, SSPM, WAF, firewalls, and email protection across global environments. Integrate and implement network security solutions, ensuring seamless operation and compliance with Zero Trust security principles. Enforce CMMC regulations, technical data controls, and export authorization rules, including U.S. person-only access restrictions for controlled systems and datasets. Conduct and support external audits, internal reviews, and compliance assessments related to CMMC and other regulatory frameworks. Research, evaluate, pilot, and implement new security solutions at a global enterprise scale, collaborating with vendors and stakeholders. Investigate security events and alerts from multiple log sources, performing end-to-end security investigations, and reporting actionable findings. Develop and manage the collection, reporting, and analysis of security events and metrics to drive continuous improvement. Participate in incident response processes and supporting light on-call pager duty rotations for critical issues.

Strengthen Synopsys’ global security posture by implementing advanced security controls and best practices. Ensure compliance with CMMC and other regulatory frameworks, enabling secure operations for critical projects. Protect sensitive data, intellectual property, and infrastructure against emerging cyber threats. Drive continuous improvement in security operations through data-driven analysis and proactive risk management. Enhance cross-functional collaboration between engineering, compliance, and executive teams to foster a culture of security awareness. Support innovation by enabling secure cloud implementations and supporting offensive security initiatives.

Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or related field required. 5+ years of hands-on experience with enterprise-grade security solutions (CASB, SSPM, WAF, firewalls, email security). 2+ years of experience installing, integrating, and deploying network security solutions. Solid understanding of Zero Trust security principles and architectures. Deep knowledge of CMMC regulations, technical data controls, and export authorization rules. Experience enforcing U.S. person-only access restrictions for controlled systems and datasets. Experience with external audits, internal reviews, and compliance assessments. Broad experience securing cloud implementations (AWS, GCP, Azure) and offensive security domains. Hands-on experience with Zscaler, Palo Alto Networks, ProofPoint, and other leading security platforms. Relevant certifications (CEH, CISSP, GIAC, OSCP, AWS Certified Advanced Networking, Security+) preferred. US citizenship or Green Card required.

XML job scraping automation by YubHub

You are detail-oriented, analytical, and have a proven track record of delivering robust security solutions that address both immediate risks and long-term strategic objectives. Your communication skills enable you to bridge the gap between technical and non-technical stakeholders, ensuring that security requirements are understood and implemented organization-wide. You value diversity and inclusion, welcoming perspectives from all backgrounds to foster creative problem-solving and innovation. You are energized by mentoring others, sharing your knowledge, and empowering teams to adopt best practices in security engineering and operations. If you are ready to make a significant impact, drive security excellence, and help shape the future of Synopsys' infrastructure, we want to hear from you.

Responsibilities:

• Design, implement, and manage security tools, automation, and metrics across cloud, network, endpoint, email, and SASE environments to ensure robust protection.
• Engineer and operationalize security processes and frameworks, aligning with enterprise security strategy and regulatory requirements.
• Consult with product and development teams to integrate security and privacy requirements into infrastructure solutions, safeguarding organizational and customer assets.
• Provide technical leadership and guidance in infrastructure security engineering, applying best practices and advocating for security at every stage of the product lifecycle.
• Research and develop next-generation security solutions, including the integration of AI-driven tools to enhance security reviews and streamline processes.
• Lead and participate in cross-functional security consulting engagements, delivering actionable recommendations and ensuring compliance with industry standards.
• Deliver security frameworks and documentation that inform the organization about emerging industry trends and solutions across multiple security pillars.

Impact:

• Elevate Synopsys' security posture by designing and operationalizing industry-leading infrastructure security solutions.
• Enable secure innovation and business agility by embedding security into the fabric of Synopsys' products and services.
• Drive adoption of security automation and metrics, increasing efficiency and visibility across security operations
• Mentor and empower teams to adopt best practices, fostering a culture of security awareness and accountability.
• Ensure compliance with global regulations and standards, reducing organizational risk and enhancing customer trust.
• Champion the integration of cutting-edge technologies, such as AI, to stay ahead of emerging threats and industry trends.
• Shape the overall enterprise security strategy, contributing to Synopsys' reputation as a market leader in secure technology solutions.

Requirements:

• Bachelor’s degree in Computer Science, Information Security, or a related discipline, with over 6 years of relevant professional experience.
• Extensive hands-on experience in infrastructure security domains, including cloud, network, endpoint, email, and SASE security.
• Strong knowledge of security architecture, engineering, and assurance best practices across multiple security pillars.
• Proven ability to design and implement security automation and metrics for enterprise environments.
• Experience integrating AI-driven tools and methodologies into security processes a strong plus.
• Comprehensive understanding of U.S. and international security regulations and standards.

Team:

You will join the Synopsys Infrastructure Security Engineering team—a diverse, high-performing group of experts dedicated to enabling secure innovation across the enterprise. The team’s focus spans multiple security pillars, collaborating with stakeholders company-wide to deliver scalable, automated, and resilient security solutions. Together, you’ll tackle complex challenges, drive strategic initiatives, and ensure Synopsys remains at the forefront of infrastructure security excellence.

Rewards and Benefits:

We offer a comprehensive range of health, wellness, and financial benefits to cater to your needs. Our total rewards include both monetary and non-monetary offerings. Your recruiter will provide more details about the salary range and benefits during the hiring process.

XML job scraping automation by YubHub

We’re looking for a Security Engineering Lead to own and drive Anthropic’s Corporate Security programme. This is a player-coach Tech Lead Manager (TLM) role: you’ll be both the most senior technical individual contributor on corporate security and the people leader for a lean, high-impact team of Security Engineers.

Corporate Security at Anthropic encompasses everything that protects our people, endpoints, networks, SaaS ecosystem, and corporate data—the full surface area outside of production infrastructure. The scope is broad and the team is deliberately small, which means you’ll need deep technical skills across multiple domains, strong judgment about where to invest, and a bias toward automation and engineering-driven solutions over manual process.

You’ll report into Security leadership and partner closely with IT, Infrastructure Security, Detection & Response, and GRC teams. This role is high-visibility and high-autonomy: you’ll be expected to define the roadmap, make architectural decisions, and represent Corporate Security across the company.

Responsibilities:

Technical Leadership & Hands-on Engineering

• Own the security architecture, tooling, and controls for Anthropic’s corporate environment end-to-end, including endpoint fleets (macOS, Windows, ChromeOS), campus and office networks, SaaS applications, mobile devices
• Design, build, and ship security automation, integrations, and internal tooling—including leveraging Claude and LLMs to accelerate security workflows
• Define and enforce security baselines, hardening standards, and configuration policies across all corporate platforms
• Define what it means to operate safely in an environment where AI agents act more like humans than actual humans
• Evaluate, select, deploy, and operate corporate security tools (EDR/XDR, MDM, ZTNA, CASB/SSPM, email security, DLP, browser security, etc.)
• Drive vulnerability management for corporate assets, including patch orchestration, risk-based prioritization, and exception management
• Lead security reviews of new SaaS adoptions, corporate infrastructure changes, and IT projects

People Leadership & Team Building

• Manage, mentor, and grow a purposefully lean team of Security Engineers; set clear expectations, run effective 1:1s, and create an environment where engineers do the best work of their careers
• Hire and build the team as scope expands—own the hiring bar and pipeline for Corporate Security Engineering roles
• Balance your own IC contributions with the team’s needs; know when to go deep on a problem yourself and when to delegate and coach
• Foster a culture of operational excellence, blameless incident review, and continuous improvement

Strategy & Cross-Functional Partnership

• Define and own the Corporate Security roadmap, aligning investments to Anthropic’s risk profile and growth trajectory
• Partner with IT Operations to ensure security is embedded in endpoint provisioning, network design, and SaaS lifecycle management
• Collaborate with Detection & Response on telemetry coverage, detection engineering, and incident handling for corporate-sourced events
• Partner with Infrastructure and Security Engineering teams to ensure security standards are consistent across all of Anthropic
• Communicate security posture, risks, and investment needs to Security leadership and cross-functional stakeholders clearly and persuasively

You may be a good fit if you:

• Have 8+ years of Security Engineering experience in a corporate/enterprise security domain (endpoint security, network security, SaaS security, identity, or a combination)
• Have 2+ years of experience managing or tech-leading a team of engineers, with a demonstrated track record of developing talent and shipping results through others
• Are a strong engineer who still writes code regularly—you can prototype a tool, write a detection, build an integration, or debug a complex configuration issue
• Have deep experience with macOS fleet security (this is our primary platform) and solid working knowledge of Windows and ChromeOS security
• Have hands-on experience deploying and operating EDR/XDR, MDM, ZTNA/zero trust, and identity security solutions at scale
• Understand modern SaaS security challenges: shadow IT, OAuth token sprawl, data exfiltration paths, SaaS-to-SaaS integrations, and SSPM/CASB tooling
• Can work independently with high autonomy, manage ambiguity, and make sound risk-based prioritization decisions in a fast-paced environment
• Have excellent communication skills and can translate complex security topics into clear recommendations for technical and non-technical audiences

Strong candidates may have:

• Securing corporate environments at high-growth AI, cloud, or developer-tools companies
• Maturing a Corporate Security function from early stage, including defining scope, selecting the initial toolset, and hiring the founding team
• Advanced macOS security (system extensions, endpoint security framework, MDM profile engineering, Declarative Device Management)
• Network security architecture for hybrid/multi-office environments, including SD-WAN, ZTNA, DNS security, and network segmentation
• Browser security and isolation technologies (e.g., Island, Talon/Palo Alto, Chrome Enterprise)
• Proficiency in Python, Go, or similar languages for building sec

XML job scraping automation by YubHub

Enterprise Security Engineer

Location

Remote - US

Employment Type

Full time

Location Type

Remote

Department

IT

Compensation

• San Francisco$230K – $325K • Offers Equity
• Remote$260K – $292.5K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance related bonus for eligible employees and benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick and safe time (1 hour per 30 hours worked)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

About the Team

Within the OpenAI Security organization, our IT team works to ensure our team of researchers, engineers, and staff have the tools they need to work comfortably, securely, and with minimal interruptions. As an Enterprise Security Engineer, you will work in a highly technical and employee-focused environment.

Our IT team is a small and nimble team, where you’ll have the opportunity to dive into a wide breadth of areas and build from the ground up. We’re well supported and well resourced, and have a mandate to deliver a world-class enterprise security program to our teams.

About the Role

As an Enterprise Security Engineer, you will be responsible for implementing and managing the security of OpenAI's internal information systems’ infrastructure and processes. You will work closely with our IT and Security teams to develop security capabilities, enforce security policies, and monitor internal systems for security threats.

This role is open to remote employees, or relocation assistance is available to San Francisco.

In this role, you will:

• Develop and implement security measures to protect our company's information assets against unauthorized access, disclosure, or misuse.

• Monitor internal and external systems for security threats and respond to alerts.

• Contribute to and enforce our company's IT and Security policies and procedures.

• Work closely with our IT department to harden our infrastructure using best practices in AzureAD, GSuite, Github, and other SaaS tooling.

• Advise our employees on best practices for maintaining the security of their endpoints, and office AV and network infrastructure.

• Devise novel sharing controls and associated monitoring to protect company data, including  intelligent groups management, Data Loss Prevention (DLP) and other security controls as appropriate.

• Employ forward-thinking models like “secure by default” and “zero trust” to create sustainably secure environments for knowledge workers and developers.

• Identify and remediate vulnerabilities in our internal systems, adhering to best practices for data security.

• Use our own AI-driven models to develop systems for improved security detection and response, data classification, and other security-related tasks.

• Educate employees on the importance of data security, and advise them on best practices for maintaining a secure environment.

• Contribute to OpenAI's endpoint and cloud security roadmaps by staying up to date with the latest security threats, and making recommendations for improving our security posture.

You might thrive in this role if you have:

• Experience in protecting and managing macOS fleets.

• Experience deploying and managing endpoint security solutions (e.g. management frameworks, EDR tools).

• Experience with public cloud service providers (e.g. Amazon AWS, Microsoft Azure).

• Experience with identity and access management frameworks and protocols, including SAML, OAUTH, and SCIM.

• Experience with e-mail security protocols (e.g. SPF, DKIM, DMARC) and controls.

• Intermediate or advanced proficiency with a scripting language (e.g. Python, Bash, or similar).

• Knowledge of modern adversary tactics, techniques, and procedures.

• Ability to empathize and collaborate with colleagues, independently manage and run projects, and prioritize efforts for risk reduction.

XML job scraping automation by YubHub