Shape the Future of AI Security as an Application Security Engineer
Join OpenAI's Security team and be at the forefront of protecting groundbreaking AI technology. We're dedicated to ensuring that artificial general intelligence benefits all of humanity, and security is paramount to our mission. If you're passionate about securing cutting-edge applications and thrive in a fast-paced, innovative environment, we want to hear from you!
The Team
Our Security team is a blend of technical expertise and operational excellence. We prioritize impact, enable researchers, and prepare for future transformative technologies, all while fostering a robust security culture. You'll be an integral part of a team committed to supporting all products and research at OpenAI.
The Opportunity
As a Security Engineer specializing in Application Security, you'll play a critical role in identifying and mitigating vulnerabilities within our software applications. Your expertise will help us build secure products from the ground up.
You'll collaborate closely with development teams, integrating secure coding practices throughout the software development lifecycle (SDLC). You'll also be a security advocate, providing guidance to developers and other stakeholders, and championing a security-aware culture across the organization.
This role is based in San Francisco, Seattle or New York City but may consider remote work. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees.
What You'll Do
Security Assessments: Conduct in-depth security assessments, code reviews, and penetration testing to uncover vulnerabilities in applications and software.
Security Tool Development: Design, develop, and implement custom security tools, frameworks, and methodologies to proactively defend against evolving threats.
Development Team Collaboration: Partner with development teams to embed security best practices throughout the SDLC, with a focus on secure coding guidelines.
Threat Modeling & Risk Assessment: Lead threat modeling exercises and risk assessments to identify potential risks and develop effective mitigation strategies.
Vulnerability Management: Track, analyze, and manage vulnerabilities, providing clear guidance and support for remediation efforts.
Incident Response: Participate in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and thorough documentation.
Continuous Learning: Stay ahead of the curve on the latest security threats, vulnerabilities, and technologies to continuously improve application security measures.
What You'll Bring
Extensive experience in information security, cybersecurity, or a related field, with a significant portion of that experience in leadership or management roles.
Deep understanding of security technologies, tools, and best practices, including experience with secure coding practices, threat modeling, risk assessments, and incident response.
Experience in application security, software development, or related areas with a strong understanding of secure coding practices and application security frameworks.
Proficiency in programming languages (e.g., Python, Java, C++), experience with security tools (e.g., Burp Suite, OWASP ZAP), and familiarity with security protocols and encryption methods.
Excellent written and verbal communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences.
About OpenAI
OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We believe AI can help solve immense global challenges, and we want the upside of AI to be widely shared. We are committed to building safe and beneficial AI, and we value diverse perspectives and experiences.
We are an equal opportunity employer and do not discriminate based on race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other legally protected characteristics.
For additional information, please see OpenAI’s Affirmative Action and Equal Employment Opportunity Policy Statement.
Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act. For unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non-public information. In addition, job duties require access to secure and protected information technology systems and related data security obligations.
To notify OpenAI that you believe this job posting is non-compliant, please submit a report through this form. No response will be provided to inquiries unrelated to job posting compliance.
We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link.
OpenAI Global Applicant Privacy Policy
Ready to make a difference in the world of AI? Apply now!