Trail of Bits

Senior Security Engineer, AI/ML

United States

Not SpecifiedCompensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Cybersecurity, Biotechnology, Artificial IntelligenceIndustries

Requirements

Candidates must possess extensive experience in AI/ML security, with a demonstrated ability to identify and mitigate ML-specific vulnerabilities across complex systems. A deep understanding of AI/ML architectures, frameworks like PyTorch, Jax, LangChain, and RAG systems is required. Experience in application security assessments, including static analysis, dynamic testing, and manual code review, is also necessary. Familiarity with threat modeling and risk assessment methodologies is expected.

Responsibilities

The Senior Security Engineer will conduct comprehensive security assessments of AI/ML pipelines, tools, and frameworks, examining vulnerabilities in model architectures, training processes, and deployment infrastructure. Responsibilities include developing mitigation strategies, designing and developing security frameworks and tools specifically for AI/ML systems, and conducting security assessments of client code bases. The role also involves performing threat modeling and risk assessments, engaging with industry teams to review system code and architecture, and contributing to AI/ML regulatory frameworks, assurance methods, and auditing processes.

Skills

AI/ML
Machine Learning
Large Language Models
LLM
Security Assessments
Software Assurance
MLops
Vulnerability Analysis
Attack Vectors
CUDA
Neural Networks
Training Data Pipelines

Trail of Bits

Cybersecurity consulting and security research services

About Trail of Bits

Trail of Bits provides cybersecurity services focused on high-end security research and consulting for organizations facing complex security challenges. They specialize in areas such as reverse engineering, cryptography, virtualization, malware, and software exploits. Their services include security audits, secure deployment consulting, and developing solutions to address security vulnerabilities. The company caters to a diverse clientele, including major tech companies and government agencies, and generates revenue through consulting fees and training courses aimed at enhancing the skills of security teams. Trail of Bits distinguishes itself from competitors with its tailored consulting services and a strong emphasis on workplace culture, recognized as one of the best places to work. The goal of Trail of Bits is to help organizations effectively protect their systems and data from security threats.

New York City, New YorkHeadquarters
2012Year Founded
$5.2MTotal Funding
SEEDCompany Stage
Consulting, CybersecurityIndustries
51-200Employees

Risks

AI model unreliability in critical areas poses a risk for cybersecurity applications.
Emergence of pickle file attacks highlights vulnerabilities in machine learning models.
Focus on mobile security may divert resources from other critical cybersecurity areas.

Differentiation

Trail of Bits specializes in high-end security research and consulting services.
The company serves tech giants and government agencies with robust security measures.
Trail of Bits combines human intellect with computational power for meaningful security gains.

Upsides

Recognition as a leader in cybersecurity consulting boosts Trail of Bits' market credibility.
Partnerships with companies like Discord and Hugging Face expand their client base.
Involvement in iVerify's funding round shows strategic interest in mobile security.

Land your dream remote job 3x faster with AI