The team fosters a collaborative environment and is building a best-in-class program to partner with the business to protect the Firm’s information and computer systems. Millennium is a complex and robust technical environment and securing the Firm from external and internal threats is a top priority.

Responsibilities

• Define and implement security guardrails for Generative AI, LLMs, and Agentic frameworks, ensuring safe enterprise adoption.
• Conduct specialized threat modeling, red teaming, and risk assessments for AI/ML models (e.g., testing for prompt injection, model theft, and data poisoning).
• Lead risk management activities, including application risk assessments, design reviews, and mitigation strategies for IT projects.
• Engage throughout the SDLC to identify vulnerabilities, conduct code reviews/penetration testing, and enforce secure coding standards.
• Evangelize AppSec and AI security best practices through developer education, training materials, and outreach.
• Design robust security architectures and integrate automated security testing (SAST/DAST/SCA) into CI/CD pipelines.
• Partner with Technology, Trading, Legal, and Compliance to create policies and communicate technical risks to non-technical stakeholders.

Qualifications

• Bachelor's degree or higher in Computer Science, Computer Engineering, IT Security or related field.
• 5+ years’ experience working as an Application Security Engineer, Software Engineer, or similar role.
• Deep understanding of AI-specific risks (OWASP Top 10 for LLMs) and experience securing applications utilizing LLMs.
• Experience working with AI models, Agentic frameworks and security risks associated with AI.
• Experience in working with global teams, collaborating on code and presentations.
• Demonstrated work experience in hybrid on-premise and Public Cloud environments (AWS/GCP/Azure)
• Strong understanding of security architectures, secure configuration principles/coding practices, cryptography fundamentals and encryption protocols.
• Experience with common SCM & CI/CD technologies like GitHub, Jenkins, Artifactory, etc. and integrating Security Scanning and Vulnerability Management into the CI/CD Pipelines
• Familiarity with static and dynamic security analysis tools, and SCA/SBOM solutions.
• Hands on experience with Secrets Management & Password Vault technologies such as Delinea Secret Server and/or Hashicorp Vault, etc.
• Strong experience in secure programming in languages such as Python, Java, C++, C#, or similar.
• Familiarity with Infrastructure as Code tools (CloudFormation, Terraform, Ansible, etc.)
• Familiarity with web application security testing tools and methodologies.
• Knowledge of various security frameworks and standards such as ISO 27001, NIST, OWASP, etc.
• Knowledge of Linux, OS internals and containers is a plus.
• Certifications like CISSP, CISM, CompTIA Security+, or CEH are advantageous.

XML job scraping automation by YubHub

You'll define the installation standards, configuration baselines, and deployment processes that the broader team executes against , from access control migrations and intercom replacements to AI analytics onboarding and new application integrations. You'll work across InfoSec, IT, Networking, and Identity Management to ensure every security application passes review, integrates with SSO, and is supported within Anthropic's infrastructure before going live. Your work will directly determine whether Anthropic's security technology stack scales reliably as the company grows from dozens of locations to a global enterprise footprint.

Responsibilities:

• Validate and deploy new and replacement security technology platforms including access control systems, intercom solutions, video management, visitor management, and AI/analytics tools across all Anthropic locations

• Build and maintain staging environments for pre-production testing and validation of all security applications, hardware, firmware, and system configurations

• Define installation standards, configuration baselines, licensing structures, update procedures, and maintenance requirements for every deployed security platform

• Deploy integrations between security applications, validating that platforms communicate and share data correctly before transitioning to production

• Support colleagues' security applications through InfoSec review processes, ensuring new tools meet Anthropic's information security and compliance requirements

• Coordinate SSO integration for newly deployed security applications with Identity Management and IT teams

• Transition applications requiring custom integration or data pipeline development to the IT Engineering team with documented technical requirements for roadmap inclusion

• Initiate onboarding of deployed hardware and systems into Anthropic's health monitoring platform to ensure operational visibility from day one

• Develop standardized deployment playbooks, checklists, configuration templates, and handoff documentation that enable repeatable installations across all current and future sites

• Evaluate security platforms for scalability, identifying capacity constraints, single points of failure, and architectural limitations before they impact operations at scale

• Coordinate with Networking, IT Infrastructure, and Facilities teams to ensure all infrastructure prerequisites (network, power, rack space, cloud resources) are met prior to deployment

• Execute structured handoffs to Project Management (for site programming), Break-Fix Support (for maintenance), and Access Control Administration (for ongoing system management), ensuring each team has the standards and documentation to execute independently

Requirements:

• 5+ years of hands-on experience deploying, validating, and managing enterprise physical security technology across a large or rapidly growing organization

• Experience working across InfoSec, IT, Networking, and Identity Management teams to onboard and integrate security applications into enterprise environments

• Strong technical communication skills, with the ability to define standards clearly enough that PMs, integrators, and service teams execute against them without ambiguity

• Experience with IP networking, VLANs, PoE, and infrastructure requirements for security devices

• Comfortable with 25% travel for site deployments, commissioning, and validation

Preferred Qualifications:

• Previous experience at a hyper-growth technology company or managing security technology programs for high-profile corporate environments

• Experience with Anthropic's specific technology stack: Genetec Security Center, Axis cameras, Wavelynx, Commend Symphony Cloud, Alcatraz.ai, Ambient.ai, SureView, Envoy

• Industry certifications: Genetec, Axis, CCNA, PSP, CPP, or PMP

• Experience with OSDP, modern credential technologies, and encryption protocols for physical security systems

• Familiarity with scripting or automation (Python, PowerShell) for configuration management and deployment automation

• Experience with health monitoring and observability platforms

• Experience with change management, configuration control, and version-controlled infrastructure documentation

Salary Range: $175,000-$220,000 USD

XML job scraping automation by YubHub

As an Information Systems Security Officer, you will play a critical role in shaping classified, closed, or air-gapped environments in which to deploy Anduril products or software. You will be well-versed in a combination of Information Technology, Security, and government accreditation processes, and will utilize your sharp critical thinking skills to balance Business Line needs, product velocity, and customer requirements.

Responsibilities:

• Provide expertise in documenting security controls that apply to respective systems to meet cybersecurity framework requirements.
• Perform required security functions on an iterative basis to meet requirements and deliver results.
• Apply technology standards from the commercial space in classified, air-gapped environments.
• Assist the ISSM, fellow ISSOs, and other members of the Classified Infrastructure team to understand key stakeholders' needs and provide complex technical solutions to meet contractual obligations.
• Tailor NIST 800-53 controls to determine applicability to the network environment and oversee the implementation of Continuous Monitoring for respective programs.
• Define, document, and conduct security scanning on Anduril's products and accredited information systems.
• Scope, shape, and orchestrate the development of features to ensure products meet compliance goals.

Requirements:

• Design, develop, and implement secure systems and networks per NIST RMF, JSIG, and other industry standards.
• Participate and assist in security risk assessments, vulnerability assessments, and audits to identify and mitigate threats.
• Speak to and recommend security solutions, such as IDS/IPS, encryption protocols, and secure communications technologies.
• Develop and enforce access controls, encryption strategies, and other technical measures to safeguard systems.
• Maintain and update System Security Plans (SSPs), POA&Ms, and other accreditation documentation.
• Manage the organization's security posture, ensuring compliance with internal policies and external regulatory frameworks.
• Participate in the Authorization and Accreditation (A&A) processes to obtain/maintain system Authority to Operate (ATO).
• Able to assist, even lead, incident response efforts, including investigation, root cause analysis, containment, and reporting.
• Conduct regular audits, continuous monitoring, and risk assessments to ensure ongoing compliance and system resilience.
• Collaborate with government security officials, stakeholders, and teams to address security gaps and improve controls.
• Currently possesses and is able to maintain an active U.S. Top Secret security clearance.

Preferred Qualifications:

• Experience with industry standard tools such as Splunk, DISA STIGs, and SCC.
• The ability to understand programming/scripting languages, i.e. Python, Powershell, Bash
• An understanding of Linux Red Hat operating systems and SELinux policy.

XML job scraping automation by YubHub

About the Team: Anduril employs a variety of networks and networking infrastructures to support global operations. Information Systems Security Managers are in charge of directly supporting business lines that wish to deploy Anduril products in classified environments.

About the Job: As an Information Systems Security Manager, you will be responsible for providing expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments. You will partner with program and security teams to coordinate security artifacts in support of classified deployments. You will apply technology standards from the commercial space in classified, air-gapped environments.

Responsibilities:

• Provide expertise in documenting security controls to reduce the administrative cost of deploying Anduril's products into operational environments.
• Partner with program and security teams to coordinate security artifacts in support of classified deployments.
• Apply technology standards from the commercial space in classified, air-gapped environments.
• Collaborate with Information System Owners to understand key stakeholders' needs and provide complex technical solutions to meet contractual obligations.
• Tailor NIST 800-53 controls to determine applicability to the network environment and oversee the implementation of Continuous Monitoring for respective programs.
• Define, document, and conduct security scanning on Anduril's products and accredited information systems.
• Scope, shape, and orchestrate the development of features to ensure products meet compliance goals.

Required Qualifications:

• Design, develop, and implement secure systems and networks per NIST RMF, JSIG, and other industry standards.
• Integrate security best practices into Anduril's Software Development Lifecycle (SDLC) and infrastructure design, collaborating with internal IT and engineering teams.
• Conduct security risk assessments, vulnerability assessments, and audits to identify and mitigate threats.
• Recommend and implement security solutions, such as IDS/IPS, encryption protocols, and secure communications technologies.
• Develop and enforce access controls, encryption strategies, and other technical measures to safeguard systems.
• Maintain and update System Security Plans (SSPs), POA&Ms, and other accreditation documentation.

Preferred Qualifications:

• Experience with application security paradigms such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
• Proven experience in securing micro-services architecture, including implementing best practices and compliance with DoD cybersecurity standards.
• Experience with cybersecurity in unmanned and ground control system within DoD environments.
• Experience with containerization and kubernetes along with the best practices for securing them.
• Experience with Cloud Service Providers (CSPs) and the various tools they offer for implementing security and compliance best practices.

Salary: The salary range for this role is $146,000-$194,000 USD.

Benefits: Anduril offers top-tier benefits for full-time employees, including comprehensive medical, dental, and vision plans at little to no cost to you. Anduril also offers income protection, generous time off, family planning and parenting support, mental health resources, professional development, commuter benefits, relocation assistance, and a retirement savings plan.

Protecting Yourself from Recruitment Scams: Anduril is committed to maintaining the integrity of our Talent acquisition process and the security of our candidates. We've observed a rise in sophisticated phishing and fraudulent schemes where individuals impersonate Anduril representatives, luring job seekers with false interviews or job offers. These scammers often attempt to extract payment or sensitive personal information.

To ensure your safety and help you navigate your job search with confidence, please keep the following critical points in mind:

• No Financial Requests: Anduril will never solicit payment or demand personal financial details (such as banking information, credit card numbers, or social security numbers) at any stage of our hiring process. Our legitimate recruitment is entirely free for candidates.
• Please always verify communications:
• Direct from Anduril: If you receive an email from one of our recruiters, it will only come from an @anduril.com address.
• Via Agency Partner: If contacted by a recruiting agency for an Anduril role, their email will clearly identify their agency. If you suspect any suspicious activity, please verify the agency's authenticity by reaching out to contact@anduril.com.
• Exercise Caution with Unsolicited Outreach: If you receive any communication that appears suspicious, contains grammatical errors, or makes unusual requests, do not respond or engage with the sender.

XML job scraping automation by YubHub

As part of Anthropic's Global Safety, Intelligence, and Security (GSIS) team, the Security Technology Deployment Specialist will own the validation, standardization, and deployment of physical security technology across Anthropic's rapidly expanding global office portfolio.

You'll define the installation standards, configuration baselines, and deployment processes that the broader team executes against — from access control migrations and intercom replacements to AI analytics onboarding and new application integrations. You'll work across InfoSec, IT, Networking, and Identity Management to ensure every security application passes review, integrates with SSO, and is supported within Anthropic's infrastructure before going live.

Responsibilities:

• Validate and deploy new and replacement security technology platforms including access control systems, intercom solutions, video management, visitor management, and AI/analytics tools across all Anthropic locations
• Build and maintain staging environments for pre-production testing and validation of all security applications, hardware, firmware, and system configurations
• Define installation standards, configuration baselines, licensing structures, update procedures, and maintenance requirements for every deployed security platform
• Deploy integrations between security applications, validating that platforms communicate and share data correctly before transitioning to production
• Support colleagues' security applications through InfoSec review processes, ensuring new tools meet Anthropic's information security and compliance requirements
• Coordinate SSO integration for newly deployed security applications with Identity Management and IT teams
• Transition applications requiring custom integration or data pipeline development to the IT Engineering team with documented technical requirements for roadmap inclusion
• Initiate onboarding of deployed hardware and systems into Anthropic's health monitoring platform to ensure operational visibility from day one
• Develop standardized deployment playbooks, checklists, configuration templates, and handoff documentation that enable repeatable installations across all current and future sites
• Evaluate security platforms for scalability, identifying capacity constraints, single points of failure, and architectural limitations before they impact operations at scale
• Coordinate with Networking, IT Infrastructure, and Facilities teams to ensure all infrastructure prerequisites (network, power, rack space, cloud resources) are met prior to deployment
• Execute structured handoffs to Project Management (for site programming), Break-Fix Support (for maintenance), and Access Control Administration (for ongoing system management), ensuring each team has the standards and documentation to execute independently

You may be a good fit if you:

• Have 5+ years of hands-on experience deploying, validating, and managing enterprise physical security technology across a large or rapidly growing organisation
• Have deployed security technology across 50 or more sites, or have demonstrated experience in a high-growth environment where deployment velocity and repeatability were essential
• Have built standardized deployment processes, playbooks, and configuration templates that enabled others to execute installations independently and consistently
• Have experience working across InfoSec, IT, Networking, and Identity Management teams to onboard and integrate security applications into enterprise environments
• Have supported SSO integration, InfoSec reviews, and enterprise application onboarding workflows for security tools
• Possess broad technology experience across access control, video management, intercoms, visitor management, AI/analytics, and alarm monitoring platforms
• Are a strong technical communicator who can define standards clearly enough that PMs, integrators, and service teams execute against them without ambiguity
• Have experience with IP networking, VLANs, PoE, and infrastructure requirements for security devices
• Are comfortable with 25% travel for site deployments, commissioning, and validation

Strong candidates may have:

• Previous experience at a hyper-growth technology company or managing security technology programs for high-profile corporate environments
• Experience with Anthropic's specific technology stack: Genetec Security Center, Axis cameras, Wavelynx, Commend Symphony Cloud, Alcatraz.ai, Ambient.ai, SureView, Envoy
• Industry certifications: Genetec, Axis, CCNA, PSP, CPP, or PMP
• Experience with OSDP, modern credential technologies, and encryption protocols for physical security systems
• Familiarity with scripting or automation (Python, PowerShell) for configuration management and deployment automation
• Experience with health monitoring and observability platforms
• Experience with change management, configuration control, and version-controlled infrastructure documentation

XML job scraping automation by YubHub

Location

San Francisco; Remote - US

Employment Type

Full time

Department

Consumer Products

Compensation

• $292K – $490K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

Benefits

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

About the Team

The Encryption team works across product, engineering, security, and safety to build advanced privacy products and infrastructure at OpenAI. Our mission is to provide world-class security features to users so their private data remains private, even from OpenAI. We use technologies like client-side encryption, hardware security modules (HSMs), and trusted execution environments (TEEs), and design modern crypto, storage, and authentication protocols to ship product features across ChatGPT and our future consumer devices.

About the Role

We’re looking for software engineers to design, build, and scale novel privacy features and infrastructure across ChatGPT and our future consumer devices.

In this role, you will:

• Ship fast while balancing difficult trade-offs in complex domains

• Build core abstractions for encrypted storage, sync, and recovery, especially when paired with inference in trusted execution environments

• Build product features for authentication, encryption, and storage across ChatGPT and future consumer devices

• Build and maintain infrastructure for hardware security modules (HSMs)

• Integrate with private inference and computing infrastructure

• Operate systems at scale with high reliability, including an on-call rotation

• Collaborate with a diverse set of cross-functional teams across product, engineering, security, safety, policy, and legal

You might thrive in this role if you:

• Care deeply about user privacy and security

• Have 5+ years of experience in professional software engineering

• Have experience designing end-to-end encryption protocols (e.g. Labyrinth)

• Have experience building intuitive authentication experiences for users

• Have experience building and scaling HSM infra under strict security requirements (e.g. Juicebox)

• Take pride in building and operating scalable, reliable, secure systems

• Can collaborate well and drive alignment in the face of difficult trade-offs

• Are comfortable with ambiguity and rapid change

Workplace & Location

This role may be based in San Francisco, CA or remotely in the US with occasional travel to our HQ. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

XML job scraping automation by YubHub

About the Team

The Encryption team works across product, engineering, security, and safety to build advanced privacy products and infrastructure at OpenAI. Our mission is to provide world-class security features to users so their private data remains private, even from OpenAI. We use technologies like client-side encryption, hardware security modules (HSMs), and trusted execution environments (TEEs), and design modern crypto, storage, and authentication protocols to ship product features across ChatGPT and our future consumer devices.

About the Role

We’re looking for software engineers to design, build, and scale novel privacy features and infrastructure across ChatGPT and our future consumer devices.

In this role, you will:

• Ship fast while balancing difficult trade-offs in complex domains

• Build core abstractions for encrypted storage, sync, and recovery, especially when paired with inference in trusted execution environments

• Build product features for authentication, encryption, and storage across ChatGPT and future consumer devices

• Build and maintain infrastructure for hardware security modules (HSMs)

• Integrate with private inference and computing infrastructure

• Operate systems at scale with high reliability, including an on-call rotation

• Collaborate with a diverse set of cross-functional teams across product, engineering, security, safety, policy, and legal

You might thrive in this role if you:

• Care deeply about user privacy and security

• Have 5+ years of experience in professional software engineering

• Have experience designing end-to-end encryption protocols (e.g. Labyrinth)

• Have experience building intuitive authentication experiences for users

• Have experience building and scaling HSM infra under strict security requirements (e.g. Juicebox)

• Take pride in building and operating scalable, reliable, secure systems

• Can collaborate well and drive alignment in the face of difficult trade-offs

• Are comfortable with ambiguity and rapid change

Workplace & Location

This role may be based remotely in the UK or EU with occasional travel to our HQ. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

XML job scraping automation by YubHub