Security Engineer, Application Security

About The Company

OpenAI is a leading artificial intelligence research and deployment organization dedicated to ensuring that general-purpose AI benefits all of humanity. With a focus on advancing the capabilities of AI systems safely and responsibly, OpenAI pushes the boundaries of technological innovation while maintaining a strong commitment to safety, ethics, and inclusivity. The company values diverse perspectives and experiences, recognizing that a broad range of voices is essential to developing AI that serves the entire spectrum of humanity. OpenAI's mission is to build safe and beneficial AI, deploying it thoughtfully through innovative products that address global challenges and promote positive societal impact.

About The Role

The Security Engineer, Application Security at OpenAI will play a pivotal role in safeguarding the organization’s software applications and infrastructure. This position involves identifying and mitigating security vulnerabilities through comprehensive security assessments, code reviews, penetration testing, and the development of security tools. The successful candidate will collaborate closely with development teams to embed security best practices into the software development lifecycle, ensuring that secure coding standards are upheld from inception to deployment. Additionally, the role entails providing security guidance and fostering a security-aware culture within the organization. The ideal candidate will be proactive in threat modeling, risk assessment, and vulnerability management, supporting incident response efforts when necessary. While the preferred location is in San Francisco, Seattle, or New York City, remote work options are available, with a hybrid work model that includes three days in the office per week and relocation assistance for new employees.

Qualifications

• Extensive experience in information security, cybersecurity, or related fields, including leadership or management roles.
• Deep understanding of security technologies, tools, and best practices, including secure coding, threat modeling, and incident response.
• Proven experience in application security, software development, or related areas with a strong grasp of secure coding practices and security frameworks.
• Proficiency in programming languages such as Python, Java, C++, or similar.
• Knowledge of security tools like Burp Suite, OWASP ZAP, and familiarity with security protocols and encryption methods.
• Excellent written and verbal communication skills, capable of explaining complex security issues to technical and non-technical audiences.

Responsibilities

• Perform regular security assessments, including code reviews and penetration testing, to identify vulnerabilities in applications.
• Design, develop, and implement security tools, frameworks, and methodologies to enhance application security.
• Collaborate with development teams to integrate security best practices into the software development lifecycle, including secure coding guidelines.
• Conduct threat modeling and risk assessments to proactively identify potential security risks and develop mitigation strategies.
• Track, analyze, and manage vulnerabilities, providing guidance and support for remediation efforts.
• Assist in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and proper documentation.
• Stay updated on the latest security threats, vulnerabilities, and technological advancements to continuously improve security measures.

Benefits

• Competitive salary ranging from $325,000 to $405,000 annually, with additional equity offers.
• Comprehensive health, dental, and vision insurance plans.
• Flexible work arrangements, including remote work options and a hybrid work model.
• Relocation assistance for eligible candidates.
• Opportunities for professional growth and development in a cutting-edge AI environment.
• Inclusive and diverse workplace culture that values innovation and collaboration.

Equal Opportunity

OpenAI is an equal opportunity employer. We do not discriminate based on race, religion, color, national origin, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other legally protected characteristic. We are committed to creating an inclusive environment where all employees can thrive.