Join OpenAI's innovative team as a Security Engineer focused on Application Security, where you'll safeguard our AI-driven products against sophisticated threats and vulnerabilities. Collaborate with cross-functional teams to embed security best practices into every stage of the development lifecycle.

At OpenAI, we're pushing the boundaries of artificial intelligence to benefit humanity, and security is at the heart of our mission. As a Security Engineer specializing in Application Security, you'll play a critical role in protecting our groundbreaking AI models and platforms from evolving cyber threats.

Your responsibilities will include conducting thorough security reviews of applications, identifying and mitigating vulnerabilities, and developing strategies to secure APIs and microservices. You'll work closely with software engineers, product managers, and data scientists to integrate security into the design, development, and deployment phases, ensuring our systems are resilient against attacks.

Key areas of focus include threat modeling, code reviews, automated security testing, and incident response planning. You'll leverage your expertise in secure software development lifecycle (SDLC) practices to foster a culture of security awareness across the organization. This role offers the chance to innovate in AI security, contribute to open-source projects, and collaborate on global-scale challenges.

If you're passionate about cybersecurity and excited to apply your skills in a fast-paced, impactful environment, join us in building a safer future for AI.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field; advanced certifications like CISSP or CEH preferred.
• 5+ years of experience in application security, including vulnerability assessment, penetration testing, and secure coding practices.
• Proficiency in tools such as OWASP ZAP, Burp Suite, and static/dynamic analysis scanners.
• Strong knowledge of web application architectures, OAuth, JWT, and common attack vectors like XSS, CSRF, and SQL injection.
• Experience with cloud security in environments like AWS or Azure, and scripting languages such as Python or JavaScript.
• Excellent problem-solving skills and ability to communicate security risks to technical and non-technical stakeholders.
• Familiarity with agile methodologies and CI/CD pipelines.

• Competitive salary and equity package with opportunities for growth in a leading AI company.
• Comprehensive health, dental, and vision insurance coverage.
• Unlimited PTO and flexible remote work options to support work-life balance.
• Professional development stipend for certifications, conferences, and training.
• Access to state-of-the-art tools and resources, plus mentorship from industry experts.
• Collaborative culture with team-building events and wellness programs.