As a Staff Security Engineer, you will design and implement scalable triage, prioritization, and remediation-tracking systems across application, infrastructure, and hardware domains. You will set technical standards, drive high-impact initiatives, and mentor engineers through technical leadership, while partnering with leadership on priorities and execution risks.

Key Responsibilities:

• Lead high-complexity VM technical initiatives and deliver architecture decisions for assigned program areas
• Design and build scalable triage automation, including integrations, decision logic, and production hardening
• Implement end-to-end workflow components from assessment and detection to ticket routing and remediation tracking
• Provide deep technical leadership on hardware-adjacent vulnerabilities (GPU firmware, DPU firmware/BlueField, and BMC surfaces)
• Act as senior technical responder for embargoed disclosures and zero-day events, coordinating with owner teams that deploy fixes
• Improve prioritization logic, severity models, and exception workflows through code, design reviews, and technical proposals
• Produce actionable technical metrics and risk insights for leadership consumption
• Lead root-cause analysis for high-impact vulnerability incidents and implement durable technical improvements
• Mentor IC3/IC4/IC5 engineers through design guidance, code review, and incident coaching
• Partner with security, engineering, and operational stakeholders to improve workflow reliability and accelerate remediation outcomes

Requirements:

• 9+ years of relevant experience with demonstrated strategic impact in vulnerability management, application security, platform security, or cloud security engineering
• Proven track record building and scaling security automation (SOAR workflows, AI/ML systems, detection pipelines) in production environments
• Deep subject matter expertise with vulnerability management best practices: CVSS, EPSS, CISA KEV, threat intelligence integration, and risk-based prioritization frameworks
• Excellent development background with strong coding skills in Python, Go, or similar languages for building scalable, production-grade security systems
• Significant experience with modern vulnerability management tooling (for example Wiz, Semgrep, Rapid7, Tenable, or equivalent)
• Experience with specialized infrastructure: GPU/DPU environments, firmware security, hardware vulnerabilities, or high-performance computing
• Demonstrated track record mentoring engineers across levels and driving cross-functional technical initiatives at organizational scale
• Strong business acumen and understanding of how security decisions impact engineering velocity, customer trust, and business outcomes

Preferred Qualifications:

• Practical experience building AI/ML-powered security systems (LLM integration, automated decision-making, human-in-the-loop validation) in production
• Experience managing hardware vendor security partnerships (embargoed disclosures and pre-release collaboration)
• Production experience with security automation platforms such as TINES and serverless frameworks (AWS Lambda, GCP Cloud Functions)
• Strong DevOps, DevSecOps, or SRE background with deep experience in AWS/GCP/Azure cloud services and Infrastructure as Code (Terraform, CloudFormation)
• Deep understanding of Kubernetes security (container scanning, admission controllers, supply chain security, runtime protection)
• Experience leading security programs through rapid hypergrowth (10x+ infrastructure scaling) in startup or cloud-native environments
• Practical experience managing vulnerabilities within a FedRAMP-certified environment or similar regulatory frameworks

Salary and Benefits: The base salary range for this role is $188,000 to $275,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location. We strive for both market alignment and internal equity when determining compensation. In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

Work Environment:

While we prioritize a hybrid work environment, remote work may be considered for candidates located more than 30 miles from an office, based on role requirements for specialized skill sets. New hires will be invited to attend onboarding at one of our hubs within their first month. Teams also gather quarterly to support collaboration.

XML job scraping automation by YubHub

As an Associate Solutions Consultant, you will:

• Paint the vision of the Figma Platform and guide customers in realizing the value of expansion
• Conduct technical discovery with product teams to uncover pain points across ideation and prototyping, design systems, design-to-dev handoff, and developer workflows
• Create presentations and tailored demos to showcase proposed solutions
• Advise on deal strategy by helping AEs qualify opportunities, assess technical risk, and progress deals forward
• Own IT and Security relationships during the deal cycle by addressing security questionnaires and enterprise requirements, in order to help customers adopt the platform securely and at scale
• Collaborate with Product and Engineering to quantify customer needs and help influence the product roadmap
• Design and scale technical sales efforts, facilitating conversations and connections between our customers, sales and product teams
• Create thoughtful content to delight customers and internal partners surrounding the Figma platform

We'd love to hear from you if you have:

• 4+ years professional experience including 2+ years positioning software in a presales capacity
• Experience selling to or working within product development teams, including design, engineering, or product
• Demonstrated ability to adapt to new technologies and learn quickly

At Figma, one of our values is Grow as you go. We believe in hiring smart, curious people who are excited to learn and develop their skills. If you're excited about this role but your past experience doesn't align perfectly with the points outlined in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles.

XML job scraping automation by YubHub

Lead a team dedicated to embedding security into Databricks' core platforms , including compute, identity, data plane, control plane, Kubernetes infrastructure, and developer frameworks.

Shape company-wide security architecture by driving 'secure-by-default' platforms, opinionated frameworks, and systemic guardrails.

Partner closely with engineering teams to make the secure path the easiest path.

Eliminate entire classes of security risk through scalable design, not manual reviews or ticket triage.

Set technical direction and empower engineers to build secure systems at massive scale.

The Impact You Will Have

Build secure platforms: Integrate security into infrastructure and platform systems from the ground up.

Create reusable security frameworks: Develop secure reference architectures and automated guardrails that simplify adoption.

Reduce systemic risks: Identify patterns of architectural weaknesses and drive durable, root-cause fixes across product areas.

Influence roadmaps: Work with engineering and Red Teams to validate assumptions, improve controls, and strengthen design decisions.

Scale security leadership: Grow and mentor senior security engineers, ensuring engagement happens early and proactively.

Drive meaningful outcomes: Within 12 months, your team will enable security frameworks to be adopted by default, eliminate recurring vulnerability classes, and permanently reduce at least one major systemic risk.

What We Look For

Deep technical background in distributed systems, cloud, or platform security.

Proven experience securing large-scale, multi-tenant architectures.

Strong grasp of identity, authorization, isolation, and cryptographic trust boundaries.

Comfortable influencing principal engineers and product roadmaps.

Demonstrated success leading technically senior engineers with high autonomy.

A mindset that focuses on failure chains, not just individual vulnerabilities.

Passion for building security solutions that are scalable, elegant, and frictionless for developers.

Benefits

At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region click here.

Our Commitment to Diversity and Inclusion

XML job scraping automation by YubHub

Lead a team dedicated to embedding security into Databricks' core platforms , including compute, identity, data plane, control plane, Kubernetes infrastructure, and developer frameworks.

Shape company-wide security architecture by driving 'secure-by-default' platforms, opinionated frameworks, and systemic guardrails.

Partner closely with engineering teams to make the secure path the easiest path.

Eliminate entire classes of security risk through scalable design, not manual reviews or ticket triage.

Set technical direction and empower engineers to build secure systems at massive scale.

The Impact You Will Have

Build secure platforms: Integrate security into infrastructure and platform systems from the ground up.

Create reusable security frameworks: Develop secure reference architectures and automated guardrails that simplify adoption.

Reduce systemic risks: Identify patterns of architectural weaknesses and drive durable, root-cause fixes across product areas.

Influence roadmaps: Work with engineering and Red Teams to validate assumptions, improve controls, and strengthen design decisions.

Scale security leadership: Grow and mentor senior security engineers, ensuring engagement happens early and proactively.

Drive meaningful outcomes: Within 12 months, your team will enable security frameworks to be adopted by default, eliminate recurring vulnerability classes, and permanently reduce at least one major systemic risk.

What We Look For

Deep technical background in distributed systems, cloud, or platform security.

Proven experience securing large-scale, multi-tenant architectures.

Strong grasp of identity, authorization, isolation, and cryptographic trust boundaries.

Comfortable influencing principal engineers and product roadmaps.

Demonstrated success leading technically senior engineers with high autonomy.

A mindset that focuses on failure chains, not just individual vulnerabilities.

Passion for building security solutions that are scalable, elegant, and frictionless for developers.

Benefits

At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region click here.

Our Commitment to Diversity and Inclusion

XML job scraping automation by YubHub

This role combines technical depth, strategic thinking, and the autonomy to design workflows that will protect infrastructure driving the future of AI.

Key Responsibilities:

• Build and scale AI-powered triage workflows: evaluate tools (LLM integration, TINES orchestration), architect solutions, and deploy to production
• Drive intelligent, risk-based vulnerability prioritization while simultaneously training AI models,your assessments become the foundation for automation
• Influence automation priorities: recommend which areas of the vulnerability pipeline would most benefit from automation to improve team efficiency
• Design and implement automated detection-to-ticket pipelines: build workflows that generate vulnerability detections, test them, scale across the environment, and auto-create Jira tickets
• Execute remediation campaigns: build automated workflows for EOL product removal, vulnerable software upgrades, and OS migrations at scale
• Manage embargoed vendor disclosures from hardware partners, including embargo verification and zero-day response coordination
• Lead security incident investigations related to high-profile vulnerabilities, coordinating cross-functional response and impact assessment
• Participate in on-call rotation for rapid-response vulnerability analysis during active zero-day events or critical security incidents
• Partner with IT, Infrastructure, and Engineering teams to drive remediation efforts, enforce SLAs, and escalate blockers strategically
• Write daily operations reports documenting vulnerability trends, remediation velocity, and emerging threats for security leadership
• Drive process improvements and workflow automation to improve operational efficiency and reduce manual toil

Requirements:

• 7+ years of relevant experience with demonstrated impact in vulnerability management, application security, platform security, or cloud security engineering
• Bachelor’s or Master’s degree in Computer Science, Computer Engineering, Electrical Engineering, or equivalent practical experience
• Proven hands-on experience building security automation (SOAR workflows, detection pipelines, or vulnerability prioritization frameworks)
• Deep subject matter expertise with vulnerability management best practices: CVSS, EPSS, CISA KEV, exploit intelligence, and compensating controls
• Strong development background with proficiency in Python, Go, or similar languages for building production-grade security tools
• Experience with modern vulnerability management tooling such as Wiz, Semgrep, Rapid7, or similar platforms
• Demonstrated ability to partner with cross-functional teams (IT, SRE, Engineering) to drive remediation without formal authority
• Strong familiarity with common security vulnerabilities and the ability to judge their severity and business impact

Preferred Qualifications:

• Practical experience building AI/ML-powered security workflows (LLM integration, automated triage, human-in-the-loop validation)
• Experience managing hardware security vulnerabilities (GPU/DPU firmware, BMC/IPMI, specialized compute environments)
• Production experience with security automation platforms such as TINES, Splunk SOAR, or serverless frameworks (AWS Lambda)
• Strong DevOps, DevSecOps, or SRE background with experience in AWS/GCP/Azure cloud services and Infrastructure as Code (Terraform, CloudFormation)
• Deep understanding of container security and Kubernetes (image scanning, admission control, runtime protection, supply chain security)
• Experience supporting customer audits (SOC 2, ISO 27001, FedRAMP) with vulnerability evidence and control validation
• Experience integrating vulnerability management into modern CI/CD pipelines with a 'shift-left' mentality

What We Offer:

The base salary range for this role is $165,000 to $242,000. The starting salary will be determined based on job-related knowledge, skills, experience, and market location. We strive for both market alignment and internal equity when determining compensation. In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

The range we’ve posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors. These include qualifications, experience, interview performance, and location.

XML job scraping automation by YubHub

Location

San Francisco

Employment Type

Full time

Department

Consumer Products

Compensation

• $293K – $325K • Offers Equity

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. If the role is non-exempt, overtime pay will be provided consistent with applicable laws. In addition to the salary range listed above, total compensation also includes generous equity, performance-related bonus(es) for eligible employees, and the following benefits.

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts

• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)

• 401(k) retirement plan with employer match

• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)

• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees

• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)

• Mental health and wellness support

• Employer-paid basic life and disability coverage

• Annual learning and development stipend to fuel your professional growth

• Daily meals in our offices, and meal delivery credits as eligible

• Relocation support for eligible employees

• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

More details about our benefits are available to candidates during the hiring process.

This role is at-will and OpenAI reserves the right to modify base pay and other compensation components at any time based on individual performance, team or company results, or market conditions.

Location: San Francisco, CA (Hybrid: 4 days onsite/week). Relocation assistance available.

About the Team:

We build foundational platform software that enables reliable, secure, and performant products. The team works across system layers and partners closely with adjacent engineering groups to deliver robust capabilities from concept through launch.

About the Role:

We’re seeking a Systems Software Engineer to design, implement, and debug core platform components and the pipelines that build and update system images. You’ll work across operating system layers, focusing on performance, security, and deep system debugging to ship production‑grade systems.

In this role, you will:

• Design, implement, and debug system‑level components and services across kernel and user space.

• Configure and maintain OS platform services (init, services, networking, security policies) and related tooling.

• Build and operate image and update pipelines, ensuring reliability, reproducibility, and rollback safety.

• Instrument and analyze performance using profiling and tracing; optimize CPU, memory, I/O, and power usage.

• Own platform observability and reliability: logging, crash capture, watchdogs, and diagnostics.

• Collaborate with cross‑functional teams to define interfaces and deliver end‑to‑end features.

• Establish strong engineering practices: code review, CI, reproducible builds, and release management.

• Partner with external suppliers to support builds and deployments.

You might thrive in this role if you:

• Have shipped production systems software on modern operating systems.

• Are proficient in C/C++ and a scripting language, and comfortable with OS internals (concurrency, memory management, filesystems, networking, power management).

• Bring strong systems debugging skills using debuggers, tracers, profilers, and logs across kernel/user‑space boundaries.

• Understand configuration of platform services and interfaces, and can translate requirements into stable, well‑documented APIs.

• Are fluent in user‑space foundations (service management, IPC, networking, packaging, automation).

• Have experience building platform images and designing update mechanisms for reliability and security.

Preferred Qualifications:

• Exposure to platform security (secure boot, sandboxing, mandatory access controls, attestation).

• Experience with graphics/media, hardware acceleration, or high‑throughput data paths.

• Familiarity with connectivity stacks and network configuration.

• Observability and diagnostics in distributed or resource‑constrained environments.

• Work on open‑source platforms or contributions to systems projects.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

XML job scraping automation by YubHub