Our MissionReflection’s mission is to build open superintelligence and make it accessible to all.We’re developing open weight models for individuals, agents, enterprises, and even nation states. Our team of AI researchers and company builders come from DeepMind, OpenAI, Google Brain, Meta, Character.AI, Anthropic and beyond.Role Overview:We are seeking a Security and Compliance Engineer to support the implementation and operation of Reflection AI’s technical security controls and compliance requirements. This is a hands-on, technical role designed for someone who wants to help build the future of security while balancing speed and scalability.You’ll work closely with our Foundations engineering team, Operations team, and Legal to help secure our infrastructure, datasets, and AI development workflows while learning how compliance frameworks translate into practical engineering controls.What You’ll Do:Technical Security Assist with securing cloud infrastructure, endpoints, and internal systemsHelp implement and maintain IAM controls, access reviews, and least-privilege permissionsSupport logging, monitoring, and alerting for security-relevant eventsAssist with vulnerability scanning, dependency monitoring, and remediation trackingHelp maintain endpoint protection and device security toolingSupport secure CI/CD practices, including secrets management and environment separationAI and Data Security SupportAssist with securing datasets used for model training and evaluationHelp enforce data classification and data handling standardsSupport basic dataset reviews and security checks prior to ingestionAssist with access controls and audit logging around AI systems and data pipelinesCompliance and Audit SupportSupport SOC 2 compliance activities, including evidence collection and control testingHelp maintain compliance toolingAssist with responding to customer security questionnaires and due diligence requestsTrack control gaps, remediation tasks, and follow-upsLearn how compliance requirements map to technical controlsDocumentation and LearningHelp maintain security documentation, procedures, and runbooksParticipate in and implement security training and awareness effortsContribute to incident response preparation and post-incident reviewsContinuously learn security, compliance, and privacy best practices with mentorshipWhat We Are Looking For:3-5 years of experience in IT, DevOps, software engineering, or security-adjacent rolesBasic understanding of cloud infrastructure (AWS, GCP, or Azure)Familiarity with core security concepts: access control, encryption, logging, and least privilegeComfort working with technical systems, configs, and dashboardsStrong attention to detail and willingness to learn compliance and audit processesAbility to follow through on tasks and document work clearlyPreferred QualificationsEarly career experience in security, IT, or ComplianceExposure to SOC 2, ISO 27001, or other security frameworks (academic or professional)Familiarity with GitHub, CI/CD pipelines, or infrastructure-as-codeModerate Python, Terraform, or Pulumi knowledgeInterest in AI/ML systems, data security, or privacy engineeringExperience at a startup or fast-moving engineering teamWhat We Offer:We believe that to build superintelligence that is truly open, you need to start at the foundation. Joining Reflection means building from the ground up as part of a small talent-dense team. You will help define our future as a company, and help define the frontier of open foundational models.We want you to do the most impactful work of your career with the confidence that you and the people you care about most are supported.Top-tier compensation: Salary and equity structured to recognize and retain the best talent globally.Health & wellness: Comprehensive medical, dental, vision, life, and disability insurance.Life & family: Fully paid parental leave for all new parents, including adoptive and surrogate journeys. Financial support for family planning.Benefits & balance: paid time off when you need it, relocation support, and more perks that optimize your time. Opportunities to connect with teammates: lunch and dinner are provided daily. We have regular off-sites and team celebrations.