You will design, build, and maintain detections that identify malicious activity across Stripe's infrastructure, applications, and cloud environments.

Responsibilities

• Design, build, and tune high-fidelity detections across modern SIEM platforms, covering adversary TTPs across the full attack lifecycle
• Develop detection hypotheses by researching TTPs, identifying evidence sources, and determining detection opportunities across available telemetry
• Conduct hypothesis-driven threat hunts to identify malicious activity, uncover detection gaps, and validate security controls
• Perform malware analysis and reverse engineering to extract indicators and inform detection strategies
• Build network-based detections (flow, pcap, protocol analysis) and endpoint-based detections (event logs, EDR telemetry, memory/file artifacts) across Windows, Linux, and macOS
• Partner with Threat Intelligence to operationalize intel reports into detections, hunting leads, and enrichment logic
• Collaborate with IR, SOC, and offensive security teams to validate and refine detections based on real-world incidents and red team exercises
• Build data pipelines, automation, and tooling that enable detection-as-code practices and scalable deployment
• Map detection coverage to MITRE ATT&CK, identifying and prioritizing gaps across key attack surfaces
• Lead projects, mentor teammates, and champion quality standards within the team

Requirements

• 5+ years of experience in detection engineering, threat hunting, or security operations
• Demonstrated experience writing detection logic in modern SIEM platforms (e.g., Splunk, Chronicle, Elastic, CrowdStrike NG-SIEM, Panther, Microsoft Sentinel)
• Strong understanding of adversary tradecraft across the attack lifecycle: initial access, privilege escalation, lateral movement, defense evasion, persistence, and exfiltration
• Ability to extract TTPs from threat intelligence reports and translate them into detection opportunities
• Experience developing network-based and endpoint-based detections across multiple OS platforms (Windows, Linux, macOS)
• Experience analyzing telemetry across endpoint, network, cloud (AWS/GCP/Azure), identity, and application log sources
• Proficiency in detection/query languages (SPL, KQL, EQL, YARA-L, SQL) and programming (Python or similar)
• Strong communication skills with the ability to document detection logic and explain findings to technical and non-technical audiences
• Adversarial mindset , understanding how attackers operate to build detections that catch real-world threats

Preferred Qualifications

• Experience in detection engineering or threat hunting within fintech, financial services, or highly regulated environments
• Background in malware analysis, reverse engineering, or threat research
• Experience with purple team operations , collaborating with offensive security to validate detections
• Familiarity with big data platforms (Databricks, Trino, PySpark) for large-scale log analysis
• Proficiency with AI/LLM-assisted development tools (Claude Code, Cursor, GitHub Copilot) applied to detection workflows
• Interest in agentic automation , using LLMs to augment hunting, tuning, or triage
• Experience with detection validation tools (Atomic Red Team, ATT&CK Evaluations)
• Contributions to open-source detection content, research, or conference presentations
• Relevant certifications such as HTB CDSA, GCIH, GCFA, GNFA, OSCP, TCM PMAT, or GREM

XML job scraping automation by YubHub

You'll perform penetration testing, conduct threat modeling, and provide guidance to engineering teams on secure design and best practices. This role also involves developing security tooling, researching emerging threats, and contributing to the continuous improvement of CoreWeave's overall security posture.

Some of what you'll work on:

• Perform penetration testing as well as purple and red team exercises.
• Conduct threat modeling, code reviews, and design reviews for development teams.
• Research new attack techniques and develop strategies to counter them.
• Develop and enforce security best practices and standards, maintaining internal compliance.
• Provide solutions to complex security issues, manage multiple tasks, and prioritize effectively in a fast-paced environment.
• Present technical security information to both technical and non-technical audiences.
• Maintain technical documentation, reports, and security tooling with attention to detail.
• Participate in other security-related initiatives as assigned.

Who You Are:

• 5+ years of experience in offensive information security roles.
• Proficiency in at least one programming or scripting language (e.g., Go, Python, C/C++) for automation, code reviews, and tooling.
• Hands-on penetration testing experience and familiarity with offensive security tools.
• Strong technical knowledge of Linux operating systems and containerized environments.
• Experience securing Kubernetes and understanding related security practices.
• Able to navigate ambiguity, identify root causes, and solve complex security problems.
• Excellent written and verbal communication skills with strong technical documentation abilities.
• Capable of working independently while managing multiple priorities in a fast-paced environment.
• Strong desire to continuously learn and adopt new technologies and security techniques.

Preferred:

• Experience with firmware reverse engineering, analyzing binaries, bootloaders, and embedded systems for vulnerabilities.
• Relevant certifications such as Sec+, Net+, OSCP, or equivalent.
• Experience with EDR tuning, detections-as-code, or threat hunting as part of a Blue Team.
• Deep understanding of business-wide security best practices and implementation strategies.

Wondering if you're a good fit?

We believe in investing in our people, and value candidates who can bring their own diversified experiences to our teams – even if you aren't a 100% skill or experience match.

Here are a few qualities we've found compatible with our team.

If some of this describes you, we'd love to talk.

• You love hunting vulnerabilities and proactively improving security.
• You're curious about evolving attack vectors and defense strategies.
• You're an expert in offensive security techniques and tooling, with a passion for safeguarding systems.

Why CoreWeave?

At CoreWeave, we work hard, have fun, and move fast!

We're in an exciting stage of hyper-growth that you will not want to miss out on.

We're not afraid of a little chaos, and we're constantly learning.

Our team cares deeply about how we build our product and how we work together, which is represented through our core values:

• Be Curious at Your Core
• Act Like an Owner
• Empower Employees
• Deliver Best-in-Class Client Experiences
• Achieve More Together

We support and encourage an entrepreneurial outlook and independent thinking.

We foster an environment that encourages collaboration and enables the development of innovative solutions to complex problems.

As we get set for takeoff, the organization's growth opportunities are constantly expanding.

You will be surrounded by some of the best talent in the industry, who will want to learn from you, too.

Come join us!

The base salary range for this role is $165,000 to $242,000.

The starting salary will be determined based on job-related knowledge, skills, experience, and market location.

We strive for both market alignment and internal equity when determining compensation.

In addition to base salary, our total rewards package includes a discretionary bonus, equity awards, and a comprehensive benefits program (all based on eligibility).

What We Offer

The range we've posted represents the typical compensation range for this role.

To determine actual compensation, we review the market rate for each candidate which can include a variety of factors.

These include qualifications, experience, interview performance, and location.

In addition to a competitive salary, we offer a variety of benefits to support your needs, including:

• Medical, dental, and vision insurance
• 100% paid for by CoreWeave
• Company-paid Life Insurance
• Voluntary supplemental life insurance
• Short and long-term disability insurance
• Flexible Spending Account
• Health Savings Account
• Tuition Reimbursement
• Ability to Participate in Employee Stock Purchase Program (ESPP)
• Mental Wellness Benefits through Spring Health
• Family-Forming support provided by Carrot
• Paid Parental Leave
• Flexible, full-service childcare support with Kinside
• 401(k) with a generous employer match
• Flexible PTO
• Catered lunch each day in our office and data center locations
• A casual work environment
• A work culture focused on innovative disruption

Our Workplace

While we prioritize a hybrid work environment, remote work may be considered for candidates located more than 30 miles from an office, based on role requirements for specialized skill sets.

New hires will be invited to attend onboarding at one of our hubs within their first month.

Teams also gather quarterly to support collaboration.

California Consumer Privacy Act - California applicants only

CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace.

All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.

As part of this commitment and consistent with the Americans with Disabilities Act (ADA), CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship.

If reasonable accommodation is needed, please contact: careers@coreweave.com.

Export Control Compliance

This position requires access to export controlled information.

To conform to U.S. Government export regulations applicable to that information, applicant must either be (A) a U.S. person, defined as a (i) U.S. citizen or national, (ii) U.S. lawful permanent resident (green card holder), (iii) refugee under 8 U.S.C. § 1157, or (iv) asylee under 8 U.S.C. § 1158, (B) eligible to access the information under an appropriate export license, or (C) otherwise exempt from the regulations.

Applicant must also comply with all applicable laws and regulations related to the handling and transfer of export-controlled information.

By applying for this position, applicant acknowledges that they have read, understand, and will comply with these requirements.

Failure to comply with these requirements may result in termination of employment, revocation of any security clearances, or other disciplinary action.

Applicant must also agree to undergo a background investigation and obtain any necessary security clearances prior to commencing employment.

Please note that this position is subject to U.S. Government export regulations and may require applicant to sign a non-disclosure agreement (NDA) prior to commencing employment.

Applicant must also agree to comply with all applicable laws and regulations related to the handling and transfer of export-controlled information.

By applying for this position, applicant acknowledges that they have read, understand, and will comply with these requirements.

Failure to comply with these requirements may result in termination of employment, revocation of any security clearances, or other disciplinary action.

Applicant must also agree to undergo a background investigation and obtain any necessary security clearances prior to commencing employment.

Please note that this position is subject to U.S. Government export regulations and may require applicant to sign a non-disclosure agreement (NDA) prior to commencing employment.

XML job scraping automation by YubHub

The ideal candidate has a background in electrical or software engineering, with a focus on platform security, or has pivoted to a product or application security role. They will be able to conduct complex security architecture reviews, research and mitigate exploits against hardware and software, and work with other engineering teams to build resiliency into our products.

As a product security engineer, you will:

• Own the development and maturation of security features for Anduril's products
• Collaborate and build solutions with engineering teams to meet and exceed industry-standard security goals
• Collaborate with security assessment teams to assess Anduril's products and integrated components to uncover potential weaknesses
• Collaborate with manufacturing and operations teams to develop secure handling and operational processes
• Engage with teams to remediate uncovered weaknesses in designs, implementations, integrations, and processes

Required qualifications include:

• Experience with one or more programming languages (e.g. C/C++, Golang, Rust, Python)
• Experience assessing security of firmware, applications, network, IoT, or embedded systems
• Experience developing features for and improving security of firmware, applications, network, or embedded systems
• Experience building, testing, and delivering production-ready systems, especially for embedded and/or Linux systems
• Familiarity with anti-tamper and reverse engineering mechanisms
• Strong and professional communication skills (written and verbal)
• Strong understanding of the 'why' behind product, systems, and security design
• A sincere commitment to a positive, inclusive, and collaborative culture
• Must be eligible to obtain and maintain a U.S. TS clearance

Preferred qualifications include:

• Excels at the above-listed requirements
• Possesses and able to maintain an active U.S. TS Security clearance with SCI and/or SAP eligibility
• Familiarity with security architectures of embedded, aerospace, or cyber-physical systems
• Fluency in modern USG cyber methodologies, including Cyber Survivability guidance and related policy (JSIG, ICD 503, CSEIG, SSECG, NIST SP 800-160, Cyber T&E Guidebook, CMMC, etc.)
• Experience with programmable logic devices and their development tools
• Regularly builds, tests, and delivers production-ready systems, especially for embedded and/or Linux systems

US Salary Range: $156,000-$253,000 USD

XML job scraping automation by YubHub

At Cloudflare, we are on a mission to help build a better Internet. We run one of the world's largest networks that powers millions of websites and other Internet properties for customers ranging from individual bloggers to SMBs to Fortune 500 companies.

Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare all have web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks.

About the Team

Cloudforce One is Cloudflare's threat operations and research team, responsible for identifying and disrupting cyber threats ranging from sophisticated cyber criminal activity to nation-state advanced persistent threats (APTs).

About the Role

We are seeking a talented Senior Manager, Incident Response to join us in growing our Cloudforce One organization, where you will be instrumental in building a proactive and threat intelligence-driven approach to protecting Cloudflare and its customers from sophisticated and evolving threat actors.

Responsibilities

As a REACT Consultant, you will respond to customer security incidents in on-premises and cloud environments. You will detect and disrupt cyber threat activity across customer networks and cloud environments. You will engage with customers at all levels including Executive, VP, Director, and managerial levels. You will serve an integral role in the discovery and analysis of cyber threat intrusions, working alongside forensic analysts, threat researchers, detection engineers, and malware analysts to detect and mitigate malicious activity.

The findings you uncover will help identify Tactics, Techniques, and Procedures (TTPs) of ongoing threat activity to protect your customer and the greater Cloudflare customer base.

Requirements

Our ideal candidate will have 1-2 years of previous experience in cybersecurity with at least 1+ years in Digital Forensics or Incident Response. Candidates will have experience with hands-on forensic analysis in a Windows, Mac, and Linux environment. Ideally, this candidate will have experience triaging malware using static or dynamic analysis on Windows, macOS, or UNIX-based platforms.

You will be responsible correlating threat actor activity across the customers environment. Outstanding candidates will possess excellent verbal and written communication skills. You will also have experience with incident response reports and reliably be able to write simple scripts in Python or Golang.

Examples of desirable skills, knowledge and experience include:

• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, related technical field, or equivalent training/practical experience
• 3+ years of previous experience in cyber security
• 2+ years of Incident Response experience
• 1+ years of customer-facing role
• Incident Response: experience conducting or managing incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hacktivists
• Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise
• Network Forensic Analysis: strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata, and ability to perform analysis of associated network logs
• Reverse Engineering: ability to understand the capabilities of static and dynamic malware analysis
• Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations
• Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations
• Cloud Incident Response: knowledge in any of the following areas: AWS, Azure, GCP incident response methodologies
• Communications: strong ability to communicate executive and/or detailed level findings to clients; ability to effectively communicate tasks, guidance, and methodology with internal teams
• Strong written and verbal communication skills, with the ability to establish and maintain strong working relationships with business groups
• Technical knowledge of common network protocols and design patterns including TCP/IP, HTTPS, FTP, SFTP, SSH, RDP, CIFS/SMB, NFS
• Familiarity with various cloud environments (AWS, Azure, O365, Google, Cloudflare)
• Understanding of MITRE ATT&CK and NIST Cyber Security Frameworks standards and requirements
• In-depth understanding of Windows operating systems and general knowledge of Unix, Linux, and Mac operating systems

Bonus Points:

• Proficient in Python or Golang, capable of writing modular code that can be installed on a remote system
• Proficient with Yara and writing rules to detect similar malware samples
• Understanding of source code, hex, binary, regular expression, data correlation, and analysis such as network flow and system logs
• Practical malware analysis experience with static, dynamic, and automated malware analysis techniques
• Possess mid-level experience as a Malware Analyst able to reverse engineer various file formats and analyze complex malware samples
• Reverse engineering experience with APT malware with an understanding of common infection vectors
• Knowledgeable of current malware techniques to evade detection and obstruct analysis
• Experience writing malware reports on unique and interesting aspects of malware
• Experience with malware attribution
• Experience with tracking and identifying threats through Indicator of Compromise (IOCs) pivoting and infrastructure enumeration
• Familiarity with bash command line executables to conduct static analysis and investigate IOCs

Travel requirements

Ability to travel up to 20% of the time

Position may require foreign and domestic travel, passport will be required

XML job scraping automation by YubHub

This role sits at the intersection of research, product, and go-to-market. You'll work closely with research teams to develop new model capabilities for security applications, prototype and iterate quickly to validate ideas, and engage directly with customers and partners to inform what we build.

Responsibilities:

• Prototype and build new AI-powered products for cybersecurity
• Iterate quickly based on customer feedback and what you learn
• Collaborate with research teams to identify and develop new model capabilities for security applications
• Engage directly with customers and partners to understand workflows and inform product direction

You may be a good fit if you:

• Have 7+ years of experience as a software engineer
• Experience developing cybersecurity products
• Enjoy fast iteration and are energized by prototyping new ideas
• Have strong product instincts and enjoy defining what to build, not just how to build it
• Are comfortable working closely with research and go-to-market teams
• Have strong communication skills and can work effectively across functions

Strong candidates may also have:

• Experience in incident response, reverse engineering, network analysis, penetration testing, or similar fields
• Experience working with AI/ML models and building products on top of them
• Experience building agentic applications

The annual compensation range for this role is $320,000-$405,000 USD.

XML job scraping automation by YubHub

Responsibilities:

• Respond to incidents as part of a distributed 24x7 operations and on-call schedule.
• Triage and respond to security events and alerts, ensuring quick and effective containment.
• Contribute to security investigations, conducting analysis and forensics across a range of data sources to determine the timeline and impact of security events.
• Build automations, including leveraging AI and agentic platforms, to deliver autonomous capabilities, expedite your work, and scale the impact of the team.
• Communicate technical decisions through design docs and tech talks, and mentor junior security responders via security guidance, design reviews, and code reviews.

What we look for:

• Bachelor's Degree AND 4+ years experience in Incident Response work OR Master's Degree AND 2+ years experience.
• Strong cloud security background in at least 1 of AWS, GCP, or Azure, and working knowledge of the others.
• Knowledge of AI/LLM and agentic capabilities, including effective prompting and use of MCP, agents, and agent skills.
• Broad security subject matter expertise.
• Expertise in few core IR skills (DFIR, Reverse Engineering, Traditional Network Security, Storage and access security, Sandboxing, Compute security, etc.).
• Experience with Enterprise Security and SaaS applications.
• Working knowledge of a SIEM and SOAR.
• Experience building Incident Response Tooling and scripting language skills.

XML job scraping automation by YubHub

Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

We are hiring security specialists who are experienced at exploitation and remediation, and are interested in understanding how LLMs could cause harm in the future, so that we can better prepare for this future and mitigate these risks before they arise.

Responsibilities:

• Triage any vulnerabilities discovered, coordinate and assist the external and open-source community in remediation
• Write scaffolds designed to automate typical traditional attack techniques to help clarify our defensive problem selection
• Research how adversaries might misuse LLMs to identify and exploit vulnerabilities at scale in the future
• Develop promising defensive strategies that could mitigate the ability of adversaries to misuse models in harmful ways
• Work with a small, senior team of engineers and researchers to enact a forward-looking security plan

You may be a good fit if you have:

• 3+ years experience with pentesting, vulnerability research, or other offensive security experience
• Senior-level knowledge in at least one related topic area (reverse engineering, network security, exploitation, physical security)
• A history demonstrating desire to do the 'dirty work' that results in high-quality outputs
• Software engineering experience
• Demonstrated success in bringing clarity and ownership to ambiguous technical problems
• Proven ability to lead cross-functional security initiatives and navigate complex organisational dynamics

Strong candidates may also have:

• Published research papers on computer security, language modeling, or related topics; or given talks at Defcon, Blackhat, CCC, or related venues
• Familiarity with large language models and how they work; for example, you may have written agent scaffolds
• Reported CVEs, or been awarded for bug bounty vulnerabilities
• Contributed to open-source projects in LLM- or security-adjacent repositories

The annual compensation range for this role is $320,000-$405,000 USD.

XML job scraping automation by YubHub

Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

About the Role

We're looking for engineers to join a new effort building AI-powered products and capabilities for cybersecurity. You'll work across the stack to prototype new ideas and build from the ground up.

This role sits at the intersection of research, product, and go-to-market. You'll work closely with research teams to develop new model capabilities for security applications, prototype and iterate quickly to validate ideas, and engage directly with customers and partners to inform what we build. The right candidate has the technical depth to engage with research, the product instincts to know what's worth building, and the drive to move fast.

Responsibilities

• Prototype and build new AI-powered products for cybersecurity

• Iterate quickly based on customer feedback and what you learn

• Collaborate with research teams to identify and develop new model capabilities for security applications

• Engage directly with customers and partners to understand workflows and inform product direction

You may be a good fit if you:

• Have 7+ years of experience as a software engineer

• Experience developing cybersecurity products

• Enjoy fast iteration and are energized by prototyping new ideas

• Have strong product instincts and enjoy defining what to build, not just how to build it

• Are comfortable working closely with research and go-to-market teams

• Have strong communication skills and can work effectively across functions

Strong candidates may also have:

• Experience in incident response, reverse engineering, network analysis, penetration testing, or similar fields

• Experience working with AI/ML models and building products on top of them

• Experience building agentic applications

Deadline to apply:

None. Applications will be reviewed on a rolling basis.

Logistics

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience. Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work.

Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of emails from other domains. Legitimate Anthropic recruiters will never ask for money, fees, or banking information before your first day. If you're ever unsure about a communication, don't click any links—visit anthropic.com/careers directly for confirmed position openings.

How we're different

We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts. And we value impact — advancing our long-term goals of steerable, trustworthy AI — rather than work on smaller and more specific puzzles. We view AI research as an empirical science, which has as much in common with physics and biology as with traditional efforts in computer science. We're an extremely collaborative group, and we host frequent research discussions to ensure that we are pursuing the highest-impact work at any given time. As such, we greatly value communication skills.

The easiest way to understand our research directions is to read our recent research. This research continues many of the directions our team worked on prior to Anthropic, including: GPT-3, Circuit-Based Interpretability, Multimodal Neurons, Scaling Laws, AI & Compute, Concrete Problems in AI Safety, and Learning from Human Preferences.

Come work with us!

Anthropic is a public benefit corporation headquartered in San Francisco. We offer competitive compensation and benefits, optional equity donation matching, generous vacation and parental leave, flexible working hours, and a lovely office space in which to collaborate with colleagues. Guidance on Candidates' AI Usage: Learn about our policy for using AI in our application process

Interested in building your career at Anthropic? Get future opportunities by following us on LinkedIn and Twitter.

XML job scraping automation by YubHub

When you see what modern language models are capable of, do you wonder, 'How do these things work? How can we trust them?'

The Interpretability team at Anthropic is working to reverse-engineer how trained models work because we believe that a mechanistic understanding is the most robust way to make advanced systems safe. We’re looking for researchers and engineers to join our efforts.

People mean many different things by 'interpretability'. We're focused on mechanistic interpretability, which aims to discover how neural network parameters map to meaningful algorithms. Some useful analogies might be to think of us as trying to do 'biology' or 'neuroscience' of neural networks using “microscopes” we build, or as treating neural networks as binary computer programs we're trying to 'reverse engineer'.

Responsibilities:

• Develop methods for understanding LLMs by reverse engineering algorithms learned in their weights

• Design and run robust experiments, both quickly in toy scenarios and at scale in large models

• Create and analyse new interpretability features and circuits to better understand how models work.

• Build infrastructure for running experiments and visualising results

• Work with colleagues to communicate results internally and publicly

You may be a good fit if you:

• Have a strong track record of scientific research (in any field), and have done _some_ work on Interpretability

• Enjoy team science – working collaboratively to make big discoveries

• Are comfortable with messy experimental science. We're inventing the field as we work, and the first textbook is years away

• You view research and engineering as two sides of the same coin. Every team member writes code, designs and runs experiments, and interprets results

• You can clearly articulate and discuss the motivations behind your work, and teach us about what you've learned. You like writing up and communicating your results, even when they're null

Role Specific Location Policy:

• This role is based in San Francisco office; however, we are open to considering exceptional candidates for remote work on a case-by-case basis.

Logistics

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience. Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed.

XML job scraping automation by YubHub

Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

About the Role

We are looking for vulnerability researchers to help mitigate the risks that come with building AI systems. One of these risks is the potential for LLMs to enable adversaries to cause harm by automating the attacks that today are carried out by human cybercrime groups, but in the future may be easily carried out by humans misusing LLMs. We are hiring security specialists who are experienced at exploitation and remediation, and are interested in understanding how LLMs could cause harm in the future, so that we can better prepare for this future and mitigate these risks before they arise.

Responsibilities:

• Triage any vulnerabilities discovered, coordinate and assist the external and open-source community in remediation
• Write scaffolds designed to automate typical traditional attack techniques to help clarify our defensive problem selection
• Research how adversaries might misuse LLMs to identify and exploit vulnerabilities at scale in the future
• Develop promising defensive strategies that could mitigate the ability of adversaries to misuse models in harmful ways
• Work with a small, senior team of engineers and researchers to enact a forward-looking security plan

You may be a good fit if you have:

• 3+ years experience with pentesting, vulnerability research, or other offensive security experience
• Senior-level knowledge in at least one related topic area (reverse engineering, network security, exploitation, physical security)
• A history demonstrating desire to do the 'dirty work' that results in high-quality outputs
• Software engineering experience
• Demonstrated success in bringing clarity and ownership to ambiguous technical problems
• Proven ability to lead cross-functional security initiatives and navigate complex organisational dynamics

Strong candidates may also have:

• Published research papers on computer security, language modeling, or related topics; or given talks at Defcon, Blackhat, CCC, or related venues
• Familiarity with large language models and how they work; for example, you may have written agent scaffolds
• Reported CVEs, or been awarded for bug bounty vulnerabilities
• Contributed to open-source projects in LLM- or security-adjacent repositories

Logistics

Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience. Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices.

Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this.

We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work.

Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of emails from other domains. Legitimate Anthropic recruiters will never ask for money, fees, or banking information before your first day. If you're ever unsure about a communication, don't click any links—visit anthropic.com/careers directly for confirmed position openings.

How we're different

We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts. And we value impact — advancing our long-term goals of steerable, trustworthy AI — rather than work on smaller and more specific puzzles. We view AI research as an empirical science, which has as much in common with physics and biology as with traditional efforts in computer science. We're an extremely collaborative group, and we host frequent research discussions to ensure that we are pursuing the highest-impact work at any given time. As such, we greatly value communication skills.

The easiest way to understand our research directions is to read our recent research. This research continues many of the directions our team worked on prior to Anthropic, including: GPT-3, Circuit-Based Interpretability, Multimodal Neurons, Scaling Laws, AI & Compute, Concrete Problems in AI Safety, and Learning from Human Preferences.

Come work with us!

Anthropic is a public benefit corporation headquartered in San Francisco.

XML job scraping automation by YubHub

Microsoft AI are looking for a talented Senior Software Engineer at their Beijing office. This role sits at the heart of driving into Microsoft Edge, providing users with a normal Internet experience, and staying away from various malware harassment. You'll work directly with the Edge team to gain a deep understanding of the various problems users encounter when using Edge, analyze their causes, and provide solutions.

About the Role

As a Senior Software Engineer in Edge App Defaults, you will be joining a team passionate about driving into Microsoft Edge. This team is keen to protect users from using Edge normally, provide users with a normal Internet experience, and stay away from various malware harassment. In this team, you will have the opportunity to work with other teams, not only within Edge, but also with the Windows team to provide users with good Internet experience. You can also dig into the OS code and gain a deeper understanding of Windows. You will analyze Edge online usage data to identify emerging attack behaviors targeting Edge, and drive feasible mitigation solutions end-to-end. You will leverage advanced AI technology to shorten the detection latency for new attack behaviors. You will leverage advanced AI solutions to build sustainable, iterative, and long-term effective defense strategies.

Accountabilities

• Conduct in-depth market research across cinema and simulation sectors, identifying emerging trends, competitive threats, and partnership opportunities that directly inform the company's quarterly strategic planning sessions

The Candidate we're looking for

Experience:

• 4+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python

Technical skills:

• Proficient on English reading and writing

Personal attributes:

• Average verbal smooth English communication ability

Benefits

• Work from the office at least four days per week
• Health and wellbeing benefits
• Professional development opportunities
• Financial benefits (bonus, equity, pension, etc.)
• Cultural perks (team events, office amenities, etc.)

XML job scraping automation by YubHub

Microsoft AI are looking for a talented Senior Software Engineer at their Suzhou office. This role sits at the heart of driving into Microsoft Edge, providing users with a normal Internet experience, and staying away from various malware harassment. You'll work directly with the Edge team to provide users with good Internet experience.

About the Role

As a Senior Software Engineer in Edge App Defaults, you will be joining a team passionate about driving into Microsoft Edge. This team is keen to protect users from using Edge normally, provide users with a normal Internet experience, and stay away from various malware harassment. In this team, you will have the opportunity to work with other teams, not only within Edge, but also with the Windows team to provide users with good Internet experience. You can also dig into the OS code and gain a deeper understanding of Windows.

Accountabilities

• Analyze Edge online usage data to identify emerging attack behaviors targeting Edge, and drive feasible mitigation solutions end-to-end.
• Leverage advanced AI technology to shorten the detection latency for new attack behaviors.
• Leverage advanced AI solutions to build sustainable, iterative, and long-term effective defense strategies.

The Candidate we're looking for

Experience:

• Bachelor’s Degree in Computer Science or related technical field AND 4+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience.

Technical skills:

• Proficient on English reading and writing.
• Familiarity with Win32 API program development.
• Chromium based work experience.
• Familiarity with assembly and reverse engineering.

Personal attributes:

• Average verbal smooth English communication ability.

Benefits

• Starting January 26, 2026, Microsoft AI employees who live within a 50-mile commute of a designated Microsoft office in the U.S. or 25-mile commute of a non-U.S., country-specific location are expected to work from the office at least four days per week.
• Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances.

XML job scraping automation by YubHub