Key responsibilities include:

• Defining and evolving the system-wide software architecture for XBAT, spanning airborne vehicle, ground station, and autonomy layers.
• Translating safety and security goals into technical requirements, standards, and design patterns that guide engineers across multiple software teams.
• Ensuring architecture supports safety-critical and cyber-relevant workflows, including formalizing architecture decisions, traceability, and compliance pathways appropriate for advanced airborne systems.
• Driving cross-team alignment on APIs, data flows, fault handling, verification strategy, and risk management so mission, vehicle, and autonomy components integrate cleanly.
• Partnering with engineering leadership, system architects, and validation teams to balance innovation speed with rigorous assurance practices.
• Setting technical direction for long-term scalability: modularity, maintainability, testability, and support for future capability growth or certification needs.
• Mentoring senior engineers and architects, raising the bar for design rigor, documentation quality, and architectural judgment across the organization.
• Producing and maintaining architecture artifacts: high-level system diagrams, component interfaces, data models, risk analyses, and design rationales.
• Leading technical reviews for major features, changes, or integration points; ensuring alignment with architectural standards and safety/security constraints.
• Defining architecture governance: decision records, change control processes, quality gates, and collaboration flows among development, verification, and operations.
• Collaborating with systems, hardware, and avionics teams to manage boundaries, timing, resource allocation, and failure modes that affect overall aircraft and mission performance.
• Driving technology evaluation and roadmap: selecting or validating frameworks, middleware, and tooling that meet performance, assurance, and cyber-hardening needs.
• Supporting external or internal readiness evaluations: providing architectural evidence, participating in reviews, and helping the program articulate compliance posture as requirements evolve.
• Advocating for continuous improvement in architecture practice: metrics, architecture reviews, knowledge sharing, and onboarding for new team members.

XML job scraping automation by YubHub

Role: Monitor and analyze security alerts and incidents in real-time using Google SecOps or similar SIEM tools. Investigate and respond to security events promptly and effectively. Collaborate with others to identify and mitigate security incidents. Provide support during security incidents and assist in post-incident analysis. Analyze and blow up malware to understand its behavior, origins, and impact, using this intelligence to fortify our defenses. Investigate phishing attempts, identifying attack vectors and advising on preventive measures. Create, integrate, and operate security tools. Assist in purple team exercises. Maintain and update security documentation, including procedures, runbooks, and policies related to security operations. Participate in the improvement of security monitoring and incident response processes. Learn and utilize various cybersecurity tools and technologies.

Requirements: 1+ years of experience in a security-related role. Proven experience in cybersecurity, specifically in incident response, malware analysis, and phishing investigation. A firm grasp of security concepts and technologies. A strong understanding of security standards, hardening principles, and best practices. Strong analytical and problem-solving skills. Ability to work both independently and collaboratively in a team environment. Excellent written and oral communication skills.

Bonus: Any relevant certifications such as CISSP or CEH. Experience blowing up malware and looking into phishes. Previous experience with Google SecOps (or Chronicle).

What we offer: All our positions offer a compensation package that includes equity and robust benefits. Base pay is just one component of Astranis's total rewards package. Your compensation also includes a significant equity package via incentive stock options, high-quality company-subsidized healthcare, disability and life insurance, 401(k) retirement planning, flexible PTO, and free on-site catered meals.

Base Salary: $125,000-$170,000 USD. U.S. Citizenship, Lawful Permanent Residency, or Refugee/Asylee Status Required. Our mission and our products are meant to connect the world and everyone in it, regardless of gender, race, creed, or any other distinction. We believe in a diverse and inclusive workplace, and we encourage all people to join our team and bring their unique perspective to help make us stronger.

XML job scraping automation by YubHub

You will also be responsible for automating Configuration Management, security hardening, and patching of database instances across all environments. Automate workflows to reduce manual effort and improve reliability.

In addition, you will develop internal tools and scripts (Python/Bash) to enable production support teams to manage their own database instances and environments safely. Develop scripts for routine operational tasks like backups, health checks, etc.

You will integrate advanced observability platforms (Dynatrace, CloudWatch) with AIOps tools to establish SLOs and train models for anomaly detection and proactive forecasting of database degradation like predicting slow queries or imminent connection pool exhaustion).

You will design, deploy, and govern AI-powered agents (using Azure Copilot /AWS Bedrock) to achieve autonomous self-healing capabilities and automated resource management.

You will implement advanced monitoring (CloudWatch, Dynatrace) for key database metrics (SLIs/SLOs) like latency, throughput, error rates, and connection pools. Develop and train predictive ML models to analyze historical telemetry and forecast potential system outages or performance bottlenecks and configure proactive monitoring and alerting for critical services.

You will respond to alerts and create self-healing actions based on alerts.

You will design and implement cross-region/multi-AZ replication, automated failover strategies, and point-in-time recovery (PITR) procedures for mission-critical databases. Disaster recovery planning and DR drills.

You will execute backup strategies and validate recovery procedures using Rubrik and Perform restores as needed.

You will work closely with application operations / Production support teams to troubleshoot issues on database layer (performance, locks, schema) and the platform layer (multi-cloud /middleware /network, resource limits) to find the root causes.

You will lead incident response and root cause analysis (RCA) for database outages, performance degradations, and data integrity issues. Collaborate with DBAs and application teams for root cause analysis.

You will implement AI tools to perform real-time Root Cause Analysis (RCA), correlate complex event data (logs, metrics) and auto-generate runbooks.

You will define and automate scaling strategies (read replicas, sharding, auto-scaling) based on predicted load and business growth. Provide input for capacity planning and resource optimization.

You will implement cost management policies, including rightsizing instances, managing storage tiers, and defining lifecycle rules for backups and snapshots.

You will proactively analyze query performance, index usage, and database configuration, making and automating changes to optimize throughput and reduce latency. Support DBA teams in performance tuning initiatives.

You will implement robust secrets management solutions (AWS Secrets Manager, HashiCorp Vault) for database credentials, ensuring applications retrieve secrets securely at runtime.

You will define and enforce least-privilege access policies (IAM roles, service accounts) for databases.

You will implement encryption and data masking policies as directed.

You will manage security and compliance by utilizing AI agents to detect configuration drift and auto-generate compliant updates for IAM, network, and security policies.

You will apply patches and perform upgrades in coordination with DBA teams. Validate post-upgrade functionality and compliance.

XML job scraping automation by YubHub

• San Francisco, Seattle or NYC $293K – $385K • Offers Equity
• Zone A $263.7K – $346.5K • Offers Equity
• Zone B $234.4K – $308K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

About the Team

Security is foundational to OpenAI’s mission of ensuring that artificial general intelligence benefits all of humanity. As OpenAI builds and operates increasingly powerful systems, security helps make that progress durable, trustworthy, and resilient.

The Security team protects OpenAI’s technology, people, and products, but our role goes beyond defense alone. We help enable the infrastructure, research, and product work that powers frontier AI, bringing deep technical judgment and hands-on operational execution to some of the most important systems being built today. Our work is grounded in impact, pragmatism, and preparing for the security challenges that come with increasingly capable technology.

About the Role

We are seeking an experienced and highly technical Data Center Security Engineer to help secure the infrastructure behind OpenAI’s rapidly expanding data center footprint. This is a chance to work on high-consequence systems at the intersection of cybersecurity, critical infrastructure, and advanced AI, where strong technical judgment and careful execution have direct, lasting impact.

In this role, you will operate with substantial agency and ownership alongside a small team of data center security experts, driving security architecture, control validation, and defensive improvements across multiple, diverse environments, with particular emphasis on IT, Enterprise, ICS and Operational Technology (OT) networking. You will help define and raise the security bar for infrastructure programs already in flight while shaping how future deployments are secured from the start.

This role's preferred location is one of our OpenAI offices in San Francisco, Seattle, or New York City and relocation assistance is available. We are also open to considering candidates who are remote.

In this role, you will:

• Design and implement security controls that protect data center infrastructure across a growing global footprint, with particular focus on both OT and IT networking environments.

• Partner closely with a small team of data center security specialists, as well as engineering, operations, and broader security teams, to deliver resilient and practical security outcomes.

• Secure OT and IT networking environments through strong segmentation, access control, monitoring, hardening, and connectivity patterns suited to critical infrastructure.

• Contribute to security architecture and design reviews for data center systems, including OT and IT networking, network segmentation, identity and access management, provisioning workflows, hardware and firmware trust boundaries, and operational safeguards.

• Perform recurring audits, control assessments, and validation activities across OT and IT networking environments to ensure continued compliance against defined controls.

• Drive ongoing evidence collection, gap tracking, and remediation follow-through so control deficiencies are identified quickly and closed durably.

• Help define measurable security standards, control objectives, audit procedures, evidence requirements, and validation mechanisms for infrastructure and facility security programs.

• Support security monitoring, incident response, and post-incident improvement efforts for data center, OT, and IT networking environments.

• Work with suppliers, partners, and internal stakeholders to evaluate and reduce risks associated with third-party hardware, firmware, software, and operational dependencies.

• Continually evolve the security of our data centers alongside changes in adversary activity, infrastructure complexity, and the increasing demands of OpenAI’s systems.

You might thrive in this role if you have:

• 15+ years of experience in security, including meaningful hands-on experience securing large-scale infrastructure, industrial environments, or data center systems.

• Deep expertise securing OT and IT networking environments in critical infrastructure settings, including segmentation strategies, remote access controls, asset visibility, and compensating controls for operational constraints.

• Experience building audit or assurance programs that validate ongoing compliance with defined security controls, especially across OT and IT networking environments, rather than relying on one-time point-in-time reviews.

• Strong cross-functional collaboration skills including the ability to partner effectively with internal and external stakeholders while operating with a high degree of autonomy.

• Strong knowledge of security engineering and operations across network security, IAM and PAM, hardening, provisioning, monitoring, incident response, and secure lifecycle practices.

• Experience protecting hyperscale, colocation, or hybrid infrastructure environments against sophisticated adversaries.

• Familiarity with control and governance frameworks such as NIST, ISO 27001, or SOC 2, and the ability to translate them into concrete technical and operational requirements.

• The ability to operate as a high-ownership individual contributor who influences through technical judgment, collaboration, and execution.

• Clear written and verbal communication skills, including the ability to explain risk, controls, and tradeoffs to both technical and non-technical partners.

XML job scraping automation by YubHub

We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work. We're all in on this mission. If you are too, let's talk.

At Okta, our motto is "Always On" and nowhere do we embrace that more than in Technical Operations. We strive to build the most reliable and performant systems on the planet through the skillful use of automation.

Key Responsibilities:

• Mentoring, managing, and leading a team of SREs with a broad range of expertise and experience.
• Being an evangelist and advocate for security best practices, leading initiatives and projects to strengthen our security posture for our most critical infrastructure.
• Responding to production incidents, driving us to remediation as quickly as possible and determining how we can prevent them in the future.
• Triaging and troubleshooting complex production issues to ensure reliability and performance.
• Working closely with our stakeholders across the organisation to ensure our new capabilities are aligned to our competing constraints of reliability, security, and delivery velocity.
• Partnering directly with recruiting and people ops to hire and retain the best talent in the world.
• Keep sharp eyes on our metrics, including vulnerability scanning and security posture, cloud spend, RPO and RTO, and toil overhead, and ensure our projects are driving our metrics in the right direction.
• Supporting a 24x7 online environment as part of an on-call rotation.

Ideal Candidate:

• Are always willing to go the extra mile: see a problem, fix the problem.
• Are passionate about encouraging the development of engineering peers and leading by example.
• Have experience managing teams running large-scale production Java/Tomcat and containerised services in AWS (EC2, ECS, KMS, Kinesis, RDS) or other cloud providers.
• Have deep knowledge of CI/CD principles, Linux fundamentals, OS hardening, networking concepts, and IP protocols.

XML job scraping automation by YubHub

Your expertise in low-level system programming, kernel optimization, and virtualization technologies will be crucial in ensuring Anthropic can scale our compute infrastructure efficiently and reliably for training and serving frontier AI models.

Responsibilities:

Optimize our virtualization stack, improving performance, reliability, and efficiency of our VM environments

Design and implement kernel modules, drivers, and system-level components to enhance our compute infrastructure

Investigate and resolve performance bottlenecks in virtualized environments

Collaborate with cloud engineering teams to optimize interactions between our workloads and underlying hardware

Develop tooling for monitoring and improving virtualization performance

Work with our ML engineers to understand their computational needs and optimize our systems accordingly

Contribute to the design and implementation of our next-generation compute infrastructure

Share knowledge with team members on low-level systems programming and Linux kernel internals

Partner with cloud providers to influence hardware and platform features for AI workloads

You may be a good fit if you:

Have experience with Linux kernel development, system programming, or related low-level software engineering

Understand virtualization technologies (KVM, Xen, QEMU, etc.) and their performance characteristics

Have experience optimizing system performance for compute-intensive workloads

Are familiar with modern CPU architectures and memory systems

Have strong C/C++ programming skills and ideally experience with systems languages like Rust

Understand Linux resource management, scheduling, and memory management

Have experience profiling and debugging system-level performance issues

Are comfortable diving into unfamiliar codebases and technical domains

Are results-oriented, with a bias towards practical solutions and measurable impact

Care about the societal impacts of AI and are passionate about building safe, reliable systems

Strong candidates may also have experience with:

GPU virtualization and acceleration technologies

Cloud infrastructure at scale (AWS, GCP)

Container technologies and their underlying implementation (Docker, containerd, runc, OCI)

eBPF programming and kernel tracing tools

OS-level security hardening and isolation techniques

Developing custom scheduling algorithms for specialized workloads

Performance optimization for ML/AI specific workloads

Network stack optimization and high-performance networking

Experience with TPUs, custom ASICs, or other ML accelerators

Representative projects:

Optimizing kernel parameters and VM configurations to reduce inference latency for large language models

Implementing custom memory management schemes for large-scale distributed training

Developing specialized I/O schedulers to prioritize ML workloads

Creating lightweight virtualization solutions tailored for AI inference

Building monitoring and instrumentation tools to identify system-level bottlenecks

Enhancing communication between VMs for distributed training workloads

XML job scraping automation by YubHub

As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years.

Key Responsibilities:

• Own the technical vision and architecture for platform security across Anduril's product ecosystem
• Design cryptographic systems, protocols, and key management architectures for autonomous and robotic platforms operating in contested and disconnected environments
• Lead the design of hardware root-of-trust architectures integrating TPMs, TEEs, HSMs, and secure boot across diverse embedded platforms
• Drive the strategy for promoting business-line security implementations into shared, composable platform services
• Serve as the senior technical authority for security architecture reviews across the organization, providing definitive guidance on cryptographic design, protocol security, and system hardening
• Define security patterns, reference architectures, and engineering standards that enable teams across Anduril to build securely and independently
• Mentor and develop senior engineers on the team, raising the bar for security engineering across the organization
• Represent Anduril's security engineering capabilities to customers, partners, and auditors when deep technical credibility is required
• Evaluate emerging threats, cryptographic standards, and security technologies, driving adoption where they strengthen the platform

Required Qualifications:

• 12+ years of experience in software engineering, with significant depth in systems security and cryptography
• Expert-level knowledge of cryptographic protocol design, including key management architectures, certificate systems, and cryptographic agility
• Deep experience with hardware security: TPM, TEE, HSM, secure boot, and hardware root-of-trust design across multiple platform types
• Proficient in two or more of: C++, Rust, Go
• Experience designing security architectures for embedded, real-time, or robotic systems with constrained environments
• Track record of leading cross-organizational technical initiatives and driving architectural decisions that span multiple teams
• Strong ability to communicate complex security concepts to engineering leadership, product teams, and external stakeholders
• Experience performing and leading threat modeling, security architecture reviews, and cryptographic design reviews
• Eligible to obtain and maintain active U.S. Secret security clearance

Preferred Qualifications:

• Experience with post-quantum cryptography, distributed key generation (DKG), or threshold cryptographic schemes
• Background in defense, aerospace, or autonomous systems with exposure to FIPS 140, Common Criteria, or NSA CSfC requirements
• Experience designing secure communication protocols for autonomous platforms or mesh networks
• Deep knowledge of Linux kernel security, mandatory access controls (SELinux/AppArmor), and OS hardening at scale
• Experience building and evolving platform security services consumed by dozens of teams
• Familiarity with compliance frameworks (STIGs, NIST 800-53, CMMC) and translating them into engineering controls that don't compromise developer velocity
• Publications, patents, or recognized contributions in cryptography or systems security
• Experience with Nix build systems and reproducible build pipelines for security-critical software

US Salary Range: $254,000-$336,000 USD

XML job scraping automation by YubHub

Okta secures AI by building the trusted, neutral infrastructure that enables organisations to safely embrace this new era.

We are looking for builders and owners who operate with speed and urgency and execute with excellence. This is an opportunity to do career-defining work.

Okta's Workforce Identity Cloud Security Engineering group is looking for an experienced and passionate Staff Site Reliability Engineer to join a team focused on designing and developing Security solutions to harden our cloud infrastructure.

We encourage you to prescribe defence-in-depth measures, industry security standards and enforce the principle of least privilege to help take our Security posture to the next level.

Our Infrastructure Security team has a niche skill-set that balances Security domain expertise with the ability to design, implement, rollout infrastructure across multiple cloud environments without adding friction to product functionality or performance.

We are responsible for the ever-growing need to improve our customer safety and privacy by providing security services that are coupled with the core Okta product.

This is a high-impact role in a security-centric, fast-paced organisation that is poised for massive growth and success.

You will act as a liaison between the Security org and the Engineering org to build technical leverage and influence the security roadmap.

You will focus on engineering security aspects of the systems used across our services.

Join us and be part of a company that is about to change the cloud computing landscape forever.

As a Staff Engineer, you should be able to identify gaps, propose innovative solutions, and contribute to roadmaps while driving alignment across multiple teams within the organisation.

Additionally, you should serve as a role model, providing technical mentorship to junior team members and fostering a culture of learning and growth

What are we looking for?

We are looking for a security-first SRE engineer who doesn't just 'flag' issues but builds the automation to solve them.

You should have a deep-seated intuition for cloud-native security and a proven track record of hardening large-scale GCP and AWS environments.

As a Technical SME, you will design and build production infrastructure with a 'security-at-scale' mindset.

What You Will Work On?

Security Evangelism: Lead initiatives to strengthen our security posture for critical infrastructure and promote best practices across the engineering organisation.

Incident Response & Reliability: Respond to production security incidents, perform root cause analysis, and build automated preventions to ensure high performance and reliability.

Automated Hardening: Identify manual security processes and automate them using custom tooling and CI/CD integrations.

Architecture & Documentation: Develop technical documentation, runbooks, and procedures for a 24x7 online environment.

Platform Evolution: Continuously evolve our monitoring platforms, moving from simple auditing to active, automated prevention.

Minimum Required Knowledge, Skills, & Abilities:

Experience: 8+ years of experience architecting and running complex cloud networking and infrastructure, with at least 7+ years specialised in DevSecOps or Cloud Security.

GCP Expertise: Minimum 3+ years of deep, hands-on experience securing GCP (GKE, GCE, Shared VPC etc).

Infrastructure as Code (IaC): 10+ years of experience using Terraform and Chef to manage complex cloud resources and OS hardening.

Automation Mastery: Expert-level proficiency in Go, Python, or Ruby for building custom security tooling and automated remediation.

Hardened Containers: Proven track record of securing containerised workloads, including image scanning, K8s RBAC, and runtime security tools (e.g., CrowdStrike Falcon, Falco, or gVisor).

Unflappable Troubleshooting: A 'see a problem, fix the problem' mindset with the ability to debug complex networking, IAM, or performance issues under pressure.

Security Foundations: Strong grasp of Linux internals, OS hardening (CIS benchmarks), and IP protocols (TLS/SSL, DNSSEC, BGP).

Education: BS in Computer Science or equivalent professional experience.

Key Responsibilities:

IAM & Secrets Management: Design and maintain large-scale production IAM policies and secrets management workflows.

Infrastructure Hardening: Implement and maintain Public Key Infrastructure (PKI) and ensure all GCE/GKE environments meet strict compliance standards.

Operational Excellence: Utilise industry-standard tools like OSQuery, Splunk, Chronicle, Nessus, or Qualys/Crowdstrike to monitor system health and security telemetry.

Strategic Rollouts: Lead the phased transition of security policies from Audit/Detection mode to Blocking/Prevention mode, ensuring zero impact on production uptime.

Bonus Points For:

Multi-Cloud IAM Governance: Experience designing a unified IAM framework across AWS and GCP, utilising federated Identities such as Workload, Workforce Identity Federation with understanding of SAML & OIDC auth mechanism and automated 'Least Privilege' enforcement.

Cloud-Native Reliability Engineering: Deep understanding of multi-cloud reliability patterns, maintaining high availability (HA) during security patching or infrastructure-wide hardening.

Hardened Kubernetes Orchestration: Advanced experience securing GKE, EKS, and kOps, specifically implementing Pod Security Standards, Network Policies, and Admission Controllers for a 'Zero-Trust' posture.

Threat Modeling: Security Reviews & Threat Modeling at both Design & Implementation scope.

The Okta Experience - Supporting Your Well-Being - Driving Social Impact - Developing Talent and Fostering Connection + Community

We are intentional about connection. Our global community, spanning over 20 offices worldwide, is united by a drive to innovate. Your journey begins with an immersive, in-person onboarding experience designed to accelerate your impact and connect you to our mission and team from day one.

Okta is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, ancestry, marital status, age, physical or mental disability, or status as a protected veteran. We also consider for employment qualified applicants with arrest and convictions records, consistent with applicable laws.

If reasonable accommodation is needed to complete any part of the job application, interview process, or onboarding please use this Form to request an accommodation.

Notice for New York City Applicants & Employees: Okta may use Automated Employment Decision Tools (AEDT), as defined by New York City Local Law 144, that use artificial intelligence, machine learning, or other automated processes to assist in our recruitment and hiring process. In accordance with NYC Local Law 144, if you are an applicant or employee residing in New York City, please click here to view our full NYC AEDT Notice.

Okta is committed to complying with applicable data privacy and security laws and regulations. For more information, please see our Personnel and Job Candidate Privacy Notice at https://www.okta.com/legal/personnel-policy/

XML job scraping automation by YubHub

Your work will shape GitLab's enterprise security posture in the rapidly growing software supply chain security market. You'll focus on SLSA Level 3 compliance, secrets management, CI/CD security hardening, and the foundations of GitLab's global zero trust architecture.

Some examples of our projects:

• SLSA Level 3 compliance and provenance attestation across GitLab's CI/CD platform
• Integrated secrets management and runner security for container-isolated, secure pipelines

You'll lead the end-to-end software supply chain security architecture for GitLab's CI/CD platform, including SLSA Level 3 implementation and CI infrastructure hardening. You'll drive cross-team technical strategy and decisions across our Software Supply Chain Security (SSCS) stage teams, aligning engineering work to SSCS strategic plans.

You'll collaborate with infrastructure and CI/CD teams to design and land long-term initiatives for secure, scalable runner architecture, container isolation, and pipeline security at scale. You'll propose and validate technical implementations that support architectural changes to improve CI/CD scaling and performance on critical paths.

You'll teach, mentor, and coach Staff Engineers and individual contributors, raising the bar on supply chain threat modeling, secrets management, artifact signing, and SBOM lifecycle practices.

You'll partner with Engineering Managers and senior leadership to define roadmaps, break down complex initiatives, and enable Staff Engineers to lead sub-department-wide efforts.

You'll engage with customers and external stakeholders as a technical consultant and spokesperson for GitLab's software supply chain security capabilities and roadmap.

You'll collaborate with product, security, and compliance stakeholders to ensure features meet enterprise security, governance, and regulatory expectations in the software supply chain security market.

Key responsibilities include:

• Providing architectural leadership across multiple engineering teams
• Shaping GitLab's enterprise security posture in the rapidly growing software supply chain security market
• Focusing on SLSA Level 3 compliance, secrets management, CI/CD security hardening, and the foundations of GitLab's global zero trust architecture

Key requirements include:

• Deep expertise in software supply chain security, including threat modeling for supply chain attack vectors, SLSA implementation and attestation systems, and SBOM generation and lifecycle management
• Strong knowledge of artifact signing and verification using the Sigstore ecosystem, including Cosign, Fulcio, Rekor, and in-toto attestations
• Experience designing and hardening CI/CD security, such as runner isolation, pipeline security controls, and secrets management in large-scale environments

Preferred qualifications include:

• Background in distributed systems and infrastructure, including building resilient CI/CD platforms that process high pipeline volumes and optimizing performance for critical paths
• Practical experience with container security and Kubernetes security, including admission controllers, policy controllers, workload isolation, and registry hardening
• Proficiency in Go or Rust in a production environment, combined with expert-level understanding of CI/CD workflows and DevSecOps best practices
• Experience operating as a Principal or Staff Engineer across multiple development teams, providing architectural leadership and partnering with Engineering Managers and senior leaders
• Demonstrated capacity to clearly communicate complex problems and solutions

Our Software Supply Chain Security stage engineering teams are responsible for authentication and access within GitLab. We also build features that help customers manage vulnerabilities, dependencies, security policies, and compliance frameworks across their organizations.

The base salary range for this role's listed level is currently for residents of the United States only. This range is intended to reflect the role's base salary rate in locations throughout the US. Grade level and salary ranges are determined through interviews and a review of education, experience, knowledge, skills, abilities of the applicant, equity with other team members, alignment with market data, and geographic location. The base salary range does not include any bonuses, equity, or benefits.

XML job scraping automation by YubHub

You'll architect scalable, distributed database solutions, build proactive health and reliability frameworks, and drive adoption of modern database technologies and data stores that improve both product capabilities and production stability. Working hands-on in the codebase and partnering closely with product and infrastructure teams, you'll turn long-term database strategy into incremental, customer-visible improvements, shift incident response from reactive to proactive, and help define GitLab's next-generation data architecture, including sharding and multi-database support.

Key Responsibilities:

• Lead the architecture and strategy for GitLab.com's PostgreSQL infrastructure, designing scalable, resilient solutions for both SaaS and self-managed deployments.

• Build proactive database health and reliability frameworks using continuous monitoring, automated remediation, and predictive analytics to prevent customer-impacting incidents.

• Drive database best practices across engineering by guiding schema design, migrations, and query optimization, and by creating self-service tools and guardrails for product teams.

• Own end-to-end observability for database systems, designing symptom-based monitoring, leading incident response, and turning learnings into automated, repeatable workflows.

• Shape the evolution of GitLab’s database platform by evaluating and implementing modern database technologies and data stores that improve reliability, performance, and product capabilities.

• Design solutions and patterns that address uncontrolled data growth, cost efficiency, sharding, multi-database support, and other next-generation data architecture needs.

• Collaborate closely with product and infrastructure teams to align product decisions with platform constraints and priorities, breaking down long-term goals into incremental, customer-visible outcomes.

• Contribute directly to the codebase to prototype and ship working solutions, maintain technical credibility, and deep-dive into complex production issues when needed.

Requirements:

• Experience architecting, operating, and optimizing PostgreSQL in large-scale, distributed production environments with high availability and disaster recovery requirements.

• Deep knowledge of PostgreSQL internals, including the query planner, write-ahead logging, vacuum processes, and storage engine behavior.

• Background designing and maintaining highly distributed database platforms with automated failover, robust monitoring, and self-healing capabilities.

• Hands-on coding skills and comfort working across the stack, from low-level database and search systems to backend and frontend services.

• Familiarity with infrastructure-as-code, GitOps practices, security hardening, and site reliability engineering principles applied to database operations.

• Ability to debug complex, cross-system issues, translate findings into durable technical solutions, and turn incident learnings into repeatable automation.

• Experience influencing technical direction across multiple teams, providing practical guidance on migrations, query optimization, and database best practices.

• Openness to collaborating with people from diverse technical backgrounds, with a focus on clear communication, shared ownership, and learning transferable skills.

XML job scraping automation by YubHub

This role requires expertise in low-level systems security and the ability to architect solutions that balance security requirements with the performance demands of training AI models across our massive fleet.

Responsibilities:

• Design and implement secure boot chains from firmware through OS initialization for diverse hardware platforms (CPUs, BMCs, switches, peripherals, and embedded microcontrollers)

• Architect attestation systems that provide cryptographic proof of system state from hardware root of trust through application layer

• Develop measured boot implementations and runtime integrity monitoring

• Create reference architectures and security requirements for bare-metal deployments

• Integrate security controls with infrastructure teams without impacting training performance

• Prototype and validate security mechanisms before production deployment

• Conduct firmware vulnerability assessments and penetration testing

• Build firmware analysis pipelines for continuous security monitoring

• Document security architectures and maintain threat models

• Collaborate with software and hardware vendors to ensure security capabilities meet our requirements

Who you are:

• 8+ years of experience in systems security, with at least 5 years focused on firmware and hardware security (firmware, bootloaders, and OS-level security)

• Hands-on experience with secure boot, measured boot, and attestation technologies (TPM, Intel TXT, AMD SEV, ARM TrustZone)

• Strong understanding of cryptographic protocols and hardware security modules

• Experience with UEFI/BIOS or embedded firmware security, bootloader hardening, and chain of trust implementation

• Proficiency in low-level programming (C, Rust, Assembly) and systems programming

• Knowledge of firmware vulnerability assessment and threat modeling

• Track record of designing security architectures for complex, distributed systems

• Experience with supply chain security

• Ability to work effectively across hardware and software boundaries

• Knowledge of NIST firmware security guidelines and hardware security frameworks

Strong candidates may also have:

• Experience with confidential computing technologies and hardware-based TEEs

• Knowledge of SLSA framework and software supply chain security standards

• Experience securing large-scale HPC or cloud infrastructure

• Contributions to open-source security projects (coreboot, CHIPSEC, etc.)

• Background in formal verification or security proof techniques

• Experience with silicon root of trust implementations

• Experience working with building foundational technical designs, operational leadership, and vendor collaboration

• Previous work with AI/ML infrastructure security

Annual Salary: $405,000-$485,000 USD

Logistics:

• Minimum education: Bachelor’s degree or an equivalent combination of education, training, and/or experience

• Required field of study: A field relevant to the role as demonstrated through coursework, training, or professional experience

• Minimum years of experience: Years of experience required will correlate with the internal job level requirements for the position

• Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

• Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

Why work with us?

• Competitive compensation and benefits

• Optional equity donation matching

• Generous vacation and parental leave

• Flexible working hours

• Lovely office space in which to collaborate with colleagues

Guidance on Candidates' AI Usage: Learn about our policy for using AI in our application process

XML job scraping automation by YubHub

Our company’s mission is to make secure login easy and available for everyone. Yubico was founded in 2007 by Stina and Jakob Ehrensvard, and is public on Nasdaq Stockholm Main Market: YUBICO.

We are a global company with a strong company culture and employees located in over 14 countries. Yubico’s headquarters are based in Stockholm, Sweden and Santa Clara, CA.

Aligned with our mission to make the internet more secure for everyone, Yubico donates YubiKeys to organisations helping at-risk individuals through our philanthropic initiative, Secure it Forward.

We are looking for a talented individual to join the IT team to help with the growing needs in our Singapore office. As our first on-site IT team member, you'll be responsible for providing comprehensive IT support, managing endpoints, and administering systems.

About you:

• You are a systematic troubleshooter
• You like to work collaboratively and have fun
• You are customer service-oriented
• You conduct yourself with the utmost integrity and are security-minded

Tasks & Responsibilities:

• Build and configure endpoints and peripheral devices (such as printers, scanners, mobile devices) related to desktop infrastructure
• Facilitate IT onboarding and offboarding tasks
• Manage IT assets, vendors, and procurement
• Install, configure and maintain devices, providing regular maintenance to ensure optimal functionality
• Provide global remote support, supporting a “follow the sun” Service Desk operations
• Identify, log, troubleshoot, and resolve technical problems both locally and remotely
• Create and provide end-user training and documentation
• Create and update knowledge base articles and internal documentation.
• Collaborate with teams across multiple time zones
• Manage office networking
• Some domestic and international travel may be required

Basic Qualifications:

• 5+ years experience providing end user support to in-office employees as well as remote workers around the world
• Experience with Okta (or other identity provider) and Google Workspace administration
• Highly skilled in the Windows and macOS endpoint configuration and support
• Endpoint hardening and configuration management experience
• Conference and Audio Visual support experience
• System administration of endpoint systems and cloud-based applications (SaaS)
• Office networking
• Organized in nature, with great documentation and communication skills

Bonus Qualifications:

• Familiarity with Atlassian products Jira Software, Jira Service Desk, or Confluence administration
• Familiarity with Physical Security & Office Access Management systems

Additional Information

We are an equal opportunity employer, we value diversity and uphold an inclusive environment where all people feel that they are equally respected and valued. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity or expression, age, marital status, religion, national origin, disability, protected Veteran status or any other characteristic protected by law.

XML job scraping automation by YubHub

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

About the team

OpenAI’s Forward Deployed Engineering (FDE) org sits at the intersection of product, engineering, research, and go-to-market. We take frontier platform capabilities into the real world with design partners, turning raw customer signal into shipped software, repeatable patterns, and durable products.

About the role

Platform Engineer is a role within Forward Deployed Engineering (FDE) for strong software and ML engineers who want to build new platform capabilities from scratch, grounded in real customer deployments.

You will partner with customer-tagged FDEs who are driving delivery and customer outcomes, and embed where you can provide the highest leverage. In practice that means working in the trenches on architecture, product shaping, refactoring, hardening, and reusable abstractions, while preserving the pod’s ownership of customer understanding and day-to-day execution. You will also collaborate closely with our B2B Platform Team and other long-term owners to align early on what should generalize, what should remain customer-specific, and what “ready for handoff” looks like.

This role does not require travel. It is based in San Francisco or New York. We use a hybrid work model of 3 days in the office per week. We offer relocation assistance. Travel is optional-by-project and typically <0%, with occasional spikes for key embeds or launches.

In this role you will

• Provide hands-on leverage to customer pods: embed with customer-tagged FDE teams to support generalization, contributing directly in architecture, product shaping, refactoring, and implementation.

• Turn repeated signals into platform bets: translate cross-customer patterns into crisp hypotheses with clear success criteria, scope, and a validation plan that fits real account constraints.

• Raise the engineering bar through tooling and mentorship: set org-wide quality norms through high-signal code review and pairing, and build lightweight developer tooling that makes good architecture, readability, and correctness the default across FDE.

• Collaborate as part of cross-functional platform teams: partner closely with B2B Product, customer-tagged FDEs, ops, and business partners to bring the right products and platform capabilities to market.

• Lead complex platform capabilities end-to-end when needed: for high-leverage primitives like our Context Platform, act as DRI from requirements through implementation, make key tradeoffs explicit, and pull in customer pods early to keep the work grounded in real deployments.

You might thrive in this role if you

• Bring 5+ years of software engineering or ML engineering experience with a track record of shipping 0→1 capabilities that other engineers or customers depend on. Experience in high-ambiguity, fast-iteration environments (startups or product-centric teams) is a plus.

• Have owned customer-adjacent technical work end-to-end, from scoping and hypothesis-setting through production adoption, and improved outcomes through structured iteration (instrumentation, evals, error analysis, and tightening success criteria over time).

• Have built or operated systems where reliability, security, and governance materially shaped design (permissions/RBAC, auditability, data access boundaries, rollout safety, observability, and incident-driven hardening).

• Communicate clearly across engineering, product, go-to-market, and executive audiences, simplifying complex ideas and translating technical tradeoffs into adoption impact, sequencing decisions, and measurable outcomes. You can credibly “pitch” a platform bet in a customer conversation.

• Default to systems thinking: you turn ambiguous feedback, failures, and escalations into durable product requirements and reusable platform capabilities, not one-off fixes or bespoke delivery work.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

Experience

5+ years of software engineering or ML engineering experience

Employment Type

Full-time

Workplace Type

Hybrid

Category

Engineering

Industry

Technology

Salary Range

$230K – $385K

Required Skills

• Software engineering
• ML engineering
• Architecture
• Product shaping
• Refactoring
• Hardening
• Reusable abstractions
• Systems thinking

Preferred Skills

• Experience in high-ambiguity, fast-iteration environments
• Customer-adjacent technical work
• Reliability, security, and governance
• Communication across engineering, product, go-to-market, and executive audiences

XML job scraping automation by YubHub

Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

Responsibilities:

We are seeking a Linux OS and System Programming Subject Matter Expert to join our Infrastructure team. In this role, you'll work on accelerating and optimising our virtualisation and VM workloads that power our AI infrastructure. Your expertise in low-level system programming, kernel optimisation, and virtualisation technologies will be crucial in ensuring Anthropic can scale our compute infrastructure efficiently and reliably for training and serving frontier AI models.

• Optimise our virtualisation stack, improving performance, reliability, and efficiency of our VM environments
• Design and implement kernel modules, drivers, and system-level components to enhance our compute infrastructure
• Investigate and resolve performance bottlenecks in virtualised environments
• Collaborate with cloud engineering teams to optimise interactions between our workloads and underlying hardware
• Develop tooling for monitoring and improving virtualisation performance
• Work with our ML engineers to understand their computational needs and optimise our systems accordingly
• Contribute to the design and implementation of our next-generation compute infrastructure
• Share knowledge with team members on low-level systems programming and Linux kernel internals
• Partner with cloud providers to influence hardware and platform features for AI workloads

You may be a good fit if you:

• Have experience with Linux kernel development, system programming, or related low-level software engineering
• Understand virtualisation technologies (KVM, Xen, QEMU, etc.) and their performance characteristics
• Have experience optimising system performance for compute-intensive workloads
• Are familiar with modern CPU architectures and memory systems
• Have strong C/C++ programming skills and ideally experience with systems languages like Rust
• Understand Linux resource management, scheduling, and memory management
• Have experience profiling and debugging system-level performance issues
• Are comfortable diving into unfamiliar codebases and technical domains
• Are results-oriented, with a bias towards practical solutions and measurable impact
• Care about the societal impacts of AI and are passionate about building safe, reliable systems

Strong candidates may also have experience with:

• GPU virtualisation and acceleration technologies
• Cloud infrastructure at scale (AWS, GCP)
• Container technologies and their underlying implementation (Docker, containerd, runc, OCI)
• eBPF programming and kernel tracing tools
• OS-level security hardening and isolation techniques
• Developing custom scheduling algorithms for specialised workloads
• Performance optimisation for ML/AI specific workloads
• Network stack optimisation and high-performance networking
• Experience with TPUs, custom ASICs, or other ML accelerators

Representative projects:

• Optimising kernel parameters and VM configurations to reduce inference latency for large language models
• Implementing custom memory management schemes for large-scale distributed training
• Developing specialised I/O schedulers to prioritise ML workloads
• Creating lightweight virtualisation solutions tailored for AI inference
• Building monitoring and instrumentation tools to identify system-level bottlenecks
• Enhancing communication between VMs for distributed training workloads

Deadline to apply:

None. Applications will be reviewed on a rolling basis.

Logistics

Education requirements:

We require at least a Bachelor's degree in a related field or equivalent experience.

Location-based hybrid policy:

Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Visa sponsorship:

We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification.

Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work.

Your safety matters to us.

To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of emails from other domains. Legitimate Anthropic recruiters will never ask for money, fees, or banking information before your first day. If you're ever unsure about the authenticity of an email or a request, please reach out to us directly.

XML job scraping automation by YubHub

We're seeking a Platform Hardware Security Engineer to design and implement security architectures for bare-metal infrastructure. You'll work with teams across Anthropic to build firmware, bootloaders, operating systems, and attestation systems to ensure the integrity of our infrastructure from the ground up.

This role requires expertise in low-level systems security and the ability to architect solutions that balance security requirements with the performance demands of training AI models across our massive fleet.

What you'll do:

• Design and implement secure boot chains from firmware through OS initialization for diverse hardware platforms (CPUs, BMCs, switches, peripherals, and embedded microcontrollers)
• Architect attestation systems that provide cryptographic proof of system state from hardware root of trust through application layer
• Develop measured boot implementations and runtime integrity monitoring
• Create reference architectures and security requirements for bare-metal deployments
• Integrate security controls with infrastructure teams without impacting training performance
• Prototype and validate security mechanisms before production deployment
• Conduct firmware vulnerability assessments and penetration testing
• Build firmware analysis pipelines for continuous security monitoring
• Document security architectures and maintain threat models
• Collaborate with software and hardware vendors to ensure security capabilities meet our requirements

Who you are:

• 8+ years of experience in systems security, with at least 5 years focused on firmware and hardware security (firmware, bootloaders, and OS-level security)
• Hands-on experience with secure boot, measured boot, and attestation technologies (TPM, Intel TXT, AMD SEV, ARM TrustZone)
• Strong understanding of cryptographic protocols and hardware security modules
• Experience with UEFI/BIOS or embedded firmware security, bootloader hardening, and chain of trust implementation
• Proficiency in low-level programming (C, Rust, Assembly) and systems programming
• Knowledge of firmware vulnerability assessment and threat modeling
• Track record of designing security architectures for complex, distributed systems
• Experience with supply chain security
• Ability to work effectively across hardware and software boundaries
• Knowledge of NIST firmware security guidelines and hardware security frameworks

Strong candidates may also have:

• Experience with confidential computing technologies and hardware-based TEEs
• Knowledge of SLSA framework and software supply chain security standards
• Experience securing large-scale HPC or cloud infrastructure
• Contributions to open-source security projects (coreboot, CHIPSEC, etc.)
• Background in formal verification or security proof techniques
• Experience with silicon root of trust implementations
• Experience working with building foundational technical designs, operational leadership, and vendor collaboration
• Previous work with AI/ML infrastructure security

Logistics

• Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience.
• Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.
• Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work.

Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of emails from other domains. Legitimate Anthropic recruiters will never ask for money, fees, or banking information before your first day. If you're ever unsure about a communication, don't click any links—visit anthropic.com/careers directly for confirmed position openings.

How we're different

We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts.

XML job scraping automation by YubHub

We’re looking for a Security Engineering Lead to own and drive Anthropic’s Corporate Security programme. This is a player-coach Tech Lead Manager (TLM) role: you’ll be both the most senior technical individual contributor on corporate security and the people leader for a lean, high-impact team of Security Engineers.

Corporate Security at Anthropic encompasses everything that protects our people, endpoints, networks, SaaS ecosystem, and corporate data—the full surface area outside of production infrastructure. The scope is broad and the team is deliberately small, which means you’ll need deep technical skills across multiple domains, strong judgment about where to invest, and a bias toward automation and engineering-driven solutions over manual process.

You’ll report into Security leadership and partner closely with IT, Infrastructure Security, Detection & Response, and GRC teams. This role is high-visibility and high-autonomy: you’ll be expected to define the roadmap, make architectural decisions, and represent Corporate Security across the company.

Responsibilities:

Technical Leadership & Hands-on Engineering

• Own the security architecture, tooling, and controls for Anthropic’s corporate environment end-to-end, including endpoint fleets (macOS, Windows, ChromeOS), campus and office networks, SaaS applications, mobile devices
• Design, build, and ship security automation, integrations, and internal tooling—including leveraging Claude and LLMs to accelerate security workflows
• Define and enforce security baselines, hardening standards, and configuration policies across all corporate platforms
• Define what it means to operate safely in an environment where AI agents act more like humans than actual humans
• Evaluate, select, deploy, and operate corporate security tools (EDR/XDR, MDM, ZTNA, CASB/SSPM, email security, DLP, browser security, etc.)
• Drive vulnerability management for corporate assets, including patch orchestration, risk-based prioritization, and exception management
• Lead security reviews of new SaaS adoptions, corporate infrastructure changes, and IT projects

People Leadership & Team Building

• Manage, mentor, and grow a purposefully lean team of Security Engineers; set clear expectations, run effective 1:1s, and create an environment where engineers do the best work of their careers
• Hire and build the team as scope expands—own the hiring bar and pipeline for Corporate Security Engineering roles
• Balance your own IC contributions with the team’s needs; know when to go deep on a problem yourself and when to delegate and coach
• Foster a culture of operational excellence, blameless incident review, and continuous improvement

Strategy & Cross-Functional Partnership

• Define and own the Corporate Security roadmap, aligning investments to Anthropic’s risk profile and growth trajectory
• Partner with IT Operations to ensure security is embedded in endpoint provisioning, network design, and SaaS lifecycle management
• Collaborate with Detection & Response on telemetry coverage, detection engineering, and incident handling for corporate-sourced events
• Partner with Infrastructure and Security Engineering teams to ensure security standards are consistent across all of Anthropic
• Communicate security posture, risks, and investment needs to Security leadership and cross-functional stakeholders clearly and persuasively

You may be a good fit if you:

• Have 8+ years of Security Engineering experience in a corporate/enterprise security domain (endpoint security, network security, SaaS security, identity, or a combination)
• Have 2+ years of experience managing or tech-leading a team of engineers, with a demonstrated track record of developing talent and shipping results through others
• Are a strong engineer who still writes code regularly—you can prototype a tool, write a detection, build an integration, or debug a complex configuration issue
• Have deep experience with macOS fleet security (this is our primary platform) and solid working knowledge of Windows and ChromeOS security
• Have hands-on experience deploying and operating EDR/XDR, MDM, ZTNA/zero trust, and identity security solutions at scale
• Understand modern SaaS security challenges: shadow IT, OAuth token sprawl, data exfiltration paths, SaaS-to-SaaS integrations, and SSPM/CASB tooling
• Can work independently with high autonomy, manage ambiguity, and make sound risk-based prioritization decisions in a fast-paced environment
• Have excellent communication skills and can translate complex security topics into clear recommendations for technical and non-technical audiences

Strong candidates may have:

• Securing corporate environments at high-growth AI, cloud, or developer-tools companies
• Maturing a Corporate Security function from early stage, including defining scope, selecting the initial toolset, and hiring the founding team
• Advanced macOS security (system extensions, endpoint security framework, MDM profile engineering, Declarative Device Management)
• Network security architecture for hybrid/multi-office environments, including SD-WAN, ZTNA, DNS security, and network segmentation
• Browser security and isolation technologies (e.g., Island, Talon/Palo Alto, Chrome Enterprise)
• Proficiency in Python, Go, or similar languages for building sec

XML job scraping automation by YubHub

We are seeking an IT Administrator - Endpoint Management to own the enterprise endpoint strategy with primary responsibility for administering Replit’s MDM platforms, enforcing secure baseline configurations aligned to CIS Level 1 benchmarks and ensuring all corporate endpoints (primarily macOS) are properly patched, compliant, and securely configured.

What You'll Do

• Own and administer enterprise endpoint management platforms with primary responsibility for Iru/Kandji configuration, policy design, and lifecycle management

• Establish and enforce enterprise endpoint standards aligned to CIS Level 1 benchmarks

• Design, implement, and maintain secure baseline configurations for macOS endpoints ensuring systems are hardened and secure by default

• Ensure all endpoints remain compliant with patching policies, minimum OS requirements, and approved software versions through automated enforcement

• Administer and maintain an internal approved application catalog including packaging, version control, testing and secure deployment

• Ensure endpoint detection and response (EDR) tooling is properly deployed, configured and monitored (SentinalOne preferred)

• Implement and enforce appropriate data loss prevention (DLP) measures across endpoints to protect corporate data and intellectual property

• Develop compliance dashboards and reporting to track endpoint posture, remediation timelines and risk exposure

• Partner closely with Security Operations (SecOps) to investigate, contain, and remediate endpoint-related security incidents

• Participate in incident response activities including forensic coordination, containment actions and post-incident remediation

• Contribute to internal and external audits, ensuring endpoint controls meet SOC 2 and ISO 27001 requirements; prepare evidence and support auditor walkthroughs

• Own licensing strategy across administered platforms, ensuring appropriate license assignment, cost optimization, feature alignment, renewal management and utilization reporting

• Continuously evaluate new endpoint features, security capabilities, and OS updates

• Create and maintain technical documentation, configuration standards and operational runbooks

Required Skills & Experience

• 6+ years of experience in endpoint administration, device management, and enterprise IT operations in a cloud-first environment

• Hands-on expertise administering Iru/Kandji or comparable Apple-focused MDM solutions

• Understanding of MDM solutions for Microsoft Windows and Linux (Jump Cloud preferred)

• Strong understanding of CIS Level 1 controls and endpoint hardening principles

• Experience deploying and administering EDR solutions and coordinating with security teams on alert triage and remediation

• Experience managing OS patching strategies, update enforcement policies and compliance reporting

• Familiarity with DLP technologies and endpoint-based data protection controls

• Experience participating in compliance programs aligned to SOC 2 and ISO 27001 frameworks supporting audit evidence collection and control validation processes

• Strong troubleshooting skills with the ability to diagnose complex endpoint configuration and policy conflicts

• Clear documentation and communication skills with the ability to articulate technical risk and remediation strategies

Bonus Qualifications

• Active Replit user and passionate about making software creation more accessible

• Been part of a rapid growth SaaS startup

Full-Time Employee Benefits Include

• Competitive Salary & Equity

• 401(k) Program with a 4% match

• Health, Dental, Vision and Life Insurance

• Short Term and Long Term Disability

• Paid Parental, Medical, Caregiver Leave

• Commuter Benefits

• Monthly Wellness Stipend

• Autonomous Work Environment

• In Office Set-Up Reimbursement

• Flexible Time Off (FTO) + Holidays

• Quarterly Team Gatherings

• In Office Amenities

Want to learn more about what we are up to?

• Meet the Replit Agent

• Replit: Make an app for that

• Replit Blog

• Amjad TED Talk

Interviewing + Culture at Replit

• Operating Principles

• Reasons not to work at Replit

Compensation Range

$95K - $175K

XML job scraping automation by YubHub

Location

San Francisco

Employment Type

Full time

Department

Security

Compensation

• $293K – $385K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

Benefits

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

About the Team

The team’s mission is to accelerate the secure evolution of agentic AI systems at OpenAI. To achieve this, the team designs, implements, and continuously refines security policies, frameworks, and controls that defend OpenAI’s most critical assets—including the user and customer data embedded within them—against the unique risks introduced by agentic AI.

About the Role

As a Security Engineer on the Agent Security Team, you will be at the forefront of securing OpenAI’s cutting-edge agentic AI systems. Your role will involve designing and implementing robust security frameworks, policies, and controls to safeguard OpenAI’s critical assets and ensure the safe deployment of agentic systems. You will develop comprehensive threat models, partner tightly with our Agent Infrastructure group to fortify the platforms that power OpenAI’s most advanced agentic systems, and lead efforts to enhance safety monitoring pipelines at scale.

Responsibilities

• Architecting security controls for agentic AI – design, implement, and iterate on identity, network, and runtime-level defenses (e.g., sandboxing, policy enforcement) that integrate directly with the Agent Infrastructure stack.

• Building production-grade security tooling – ship code that hardens safety monitoring pipelines across agent executions at scale.

• Collaborating cross-functionally – work daily with Agent Infrastructure, product, research, safety, and security teams to balance security, performance, and usability.

• Influencing strategy & standards – shape the long-term Agent Security roadmap, publish best practices internally and externally, and help define industry standards for securing autonomous AI.

Requirements

• Strong software-engineering skills in Python or at least one systems language (Go, Rust, C/C++), plus a track record of shipping and operating secure, high-reliability services.

• Deep expertise in modern isolation techniques – experience with container security, kernel-level hardening, and other isolation methods.

• Hands-on network security experience – implementing identity-based controls, policy enforcement, and secure large-scale telemetry pipelines.

• Clear, concise communication that bridges engineering, research, and leadership audiences; comfort influencing roadmaps and driving consensus.

• Bias for action & ownership – you thrive in ambiguity, move quickly without sacrificing rigor, and elevate the security bar company-wide from day one.

• Cloud security depth on at least one major provider (Azure, AWS, GCP), including identity federation, workload IAM, and infrastructure-as-code best practices.

• Familiarity with AI/ML security challenges – experience addressing risks associated with advanced AI systems (nice-to-have but valuable)

Preferred Qualifications

• Experience with container orchestration (e.g., Kubernetes) and service mesh technologies (e.g., Istio, Linkerd).

• Knowledge of cloud security frameworks and compliance standards (e.g., HIPAA, PCI-DSS).

• Familiarity with machine learning and AI frameworks (e.g., TensorFlow, PyTorch).

• Experience with DevOps tools and practices (e.g., CI/CD pipelines, containerization).

What We Offer

• Competitive salary and benefits package

• Opportunity to work with a talented team of engineers and researchers

• Collaborative and dynamic work environment

• Professional growth and development opportunities

• Flexible work arrangements

• Access to cutting-edge technology and tools

How to Apply

If you are a motivated and experienced security engineer looking to join a dynamic team, please submit your application, including your resume and a cover letter, to [insert contact information]. We look forward to hearing from you!

XML job scraping automation by YubHub

Location

San Francisco

Employment Type

Full time

Department

Consumer Products

Compensation

• $293K – $325K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

Benefits

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

About the Team

The Release Engineer team is responsible for building and maintaining the systems that power software delivery—from CI/CD pipelines and artifact management to release automation and fleet telemetry. We ensure software across bootloaders, firmware, operating systems, and cloud services is built reproducibly, validated rigorously, and released safely at scale.

About the Role

As a Release Engineer, you’ll design, build, and operate release infrastructure that enables reliable, secure, and traceable software delivery across complex multi-component systems. You’ll partner closely with embedded, cloud, and QA teams to ensure that every build—from development to OTA deployment—is fast, verifiable, and production-ready.

We’re looking for engineers who take pride in automation, build reproducibility, and system reliability—and who enjoy building the connective tissue that allows hardware and software to ship together seamlessly.

This role is based in San Francisco, CA. We use a hybrid work model of four days in the office per week and offer relocation assistance to new employees.

In this role, you will:

• Design and operate CI/CD pipelines for multi-component builds (bootloader, firmware, OS images, backend, companion apps) using hermetic toolchains.

• Define versioning and branching strategies; automate promotions, changelogs, and artifact retention.

• Integrate unit, integration, and hardware-in-the-loop (HIL) test results; quarantine flaky tests, auto-bisect failures, and block unsafe promotions.

• Build A/B OTA update flows with verity and health checks; run staged rollouts and canaries; implement safe rollback and roll-forward strategies.

• Implement code signing for binaries and firmware, generate SBOMs, run vulnerability scanning, and attach build attestations and provenance.

• Manage dashboards and alerts for build health, promotion latency, failure rates, and fleet update telemetry.

You might thrive in this role if you:

• Have experience building and operating build and release systems for consumer devices, robotics, mobile, or embedded products.

• Are proficient in scripting and automation languages such as Python or Bash.

• Have strong Linux user-space fundamentals.

• Have experience with GitHub Actions or Buildkite, artifact registries, and reproducible toolchains.

• Have experience managing vendor BSPs and toolchains.

• Have delivered secure OTA or image updates with staged rollouts at scale.

• Are familiar with key management and supply-chain hardening.

• Have a track record of metrics-driven improvement and continuous optimization.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

XML job scraping automation by YubHub

San Francisco

Employment Type

Full time

Location Type

Hybrid

Department

Consumer Products

Compensation

• $293K – $325K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

About the Team

The Connectivity Software Engineering team is responsible for enabling seamless, secure, and high-performance wireless connectivity across OpenAI’s products. We design and optimize Bluetooth, BLE, Wi-Fi, and emerging wireless technologies to ensure robust device pairing, network performance, and interoperability. Our work spans kernel drivers, system services, and user-level tools, with a focus on real-world performance, scalability, and reliability.

About the Role

OpenAI is seeking a Connectivity Software Engineer to design, implement, and optimize wireless connectivity features across our product ecosystem. You’ll work at the intersection of systems software, wireless standards, and hardware integration—building robust pairing and provisioning flows, debugging low-level protocols, and driving performance under real-world RF constraints. You will also support certification, field interoperability, and fleet-scale connectivity infrastructure.

This role is based in San Francisco, CA. We use a hybrid work model of 4 days in the office per week and offer relocation assistance to new employees.

In this role, you will:

• Design, implement, and debug Bluetooth/BLE and Wi-Fi features across kernel drivers, BlueZ/wpa\_supplicant/hostapd, and systemd/D-Bus services

• Deliver robust pairing, bonding, and provisioning flows (GATT/GAP, LE Audio/LC3, WPA3/802.1X, captive portals, NAN)

• Optimize link performance: throughput, latency, jitter, roaming, coexistence (BT↔Wi-Fi), and power modes (TWT, WoWLAN)

• Build reliable network management using NetworkManager/nmcli, nl80211/cfg80211/mac80211, DNS/DHCP/mDNS, P2P/SoftAP

• Instrument and analyze with packet captures and tooling (btmon/hcidump, Wireshark, iperf, eBPF/perf, spectrum sniffers)

• Drive interoperability and certification readiness (Bluetooth SIG, Wi-Fi Alliance) and resolve field issues with root-cause fixes

• Contribute to OTA-safe configuration, telemetry, and diagnostics for fleet-scale operation

You might thrive in this role if you:

• Have deep experience shipping wireless features on Linux-based products

• Are highly proficient in C/C++ with scripting experience (Python or shell) and systems debugging (gdb, strace, logs, packet traces)

• Possess deep knowledge of Bluetooth Classic/BLE (HCI, L2CAP, GATT/GAP, profiles) and Wi-Fi (802.11 a/b/g/n/ac/ax, WPA2/3, nl80211, NAN)

• Bring hands-on experience with BlueZ, wpa\_supplicant/hostapd, NetworkManager, and driver bring-up on ARM64 or x86 platforms

• Have a proven track record of improving real-world performance and reliability under RF constraints

Preferred qualifications:

• Experience with LE Audio (LC3), BLE Mesh, advanced roaming (802.11k/v/r), QoS/WMM, multicast/IGMP

• Coexistence tuning across radios (BT/Wi-Fi/UWB/mmWave) and antenna/RF fundamentals with test equipment workflows

• Familiarity with UWB (IEEE 802.15.4z, FiRa) ranging/integration; mmWave/Wi-Gig (802.11ad/ay)

• Experience with security and provisioning at scale (EAP-TLS, device identity, secure boot, disk/network hardening)

• Background in building factory test, interoperability, and certification test plans; upstream/open-source contributions

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

XML job scraping automation by YubHub