Senior Security Engineer, AI/ML
Trail of BitsFull Time
Senior (5 to 8 years), Expert & Leadership (9+ years)
Candidates should have experience leading architecture and evolution for autonomous AI security agents, including capabilities for planning, reasoning, and taking secure actions. Experience building and enhancing AI security agents for security insights, natural language processing, and actionable recommendations is required. Familiarity with developing AI red teaming agents and frameworks for identifying vulnerabilities in large language models, generative AI systems, and applied AI deployments is also necessary. While the position is primarily remote, candidates located in Seattle, WA, or the San Francisco Bay Area are preferred due to occasional in-person collaboration requirements.
The Principal Software Engineer, AI will lead the architecture and evolution of the autonomous AI security agent "Hai" to detect vulnerabilities, generate threat intelligence, and perform automated security analysis. They will build and enhance the AI security agent to provide instant security insights, process natural language queries, and offer actionable recommendations to security teams. Additionally, the role involves developing AI red teaming agents and frameworks to identify vulnerabilities within large language models, generative AI systems, and applied AI deployments.
Platform connecting ethical hackers with brands
HackerOne provides a platform that connects global brands with ethical hackers to improve their cybersecurity. The platform allows companies to identify and monitor risks in their digital assets by utilizing the skills of ethical hackers who conduct penetration tests to find vulnerabilities. Clients can import their asset data and use the platform to rank the risk of exploitable assets, ensuring a proactive approach to application security. Unlike many competitors, HackerOne offers 24/7 security coverage and the ability to scale services based on client needs. The goal of HackerOne is to promote a proactive security culture by encouraging companies to implement bug bounty programs as part of their cybersecurity strategy.