Security Engineer, Anti-Abuse (AI)

TL;DR

Security Engineer, Anti-Abuse (AI): Designing and implementing advanced AI-powered detection and response systems to combat platform exploitation, including phishing, cryptomining, and LLM token farming. Focus on building guardrails for AI-generated code, detecting prompt injection attacks at scale, and automating abuse response mechanisms.

Location: Hybrid (Foster City, CA) with an in-office requirement of Monday, Wednesday, and Friday. US work authorization is required.

Salary: $192,700–$250,000.

Company

hirify.global is an agentic software creation platform enabling users worldwide to build applications using natural language and democratizing software development.

What you will do

• Design and implement LLM guardrails that detect abuse scenarios in AI-generated code and agent interactions.
• Build AI-powered detection systems that use LLMs to identify malicious patterns, classify threats, and automate response decisions.
• Build and operate abuse detection systems that identify phishing, cryptomining, account takeover, and financial fraud across millions of daily user actions.
• Design automated response mechanisms that enforce platform policies without manual intervention.
• Own the full abuse response lifecycle: detection, investigation, enforcement, and handling appeals alongside Support and Legal.
• Analyze attack patterns using BigQuery and Hex, turning investigation findings into new detection rules.

Requirements

• 4+ years of experience in security engineering, anti-abuse, trust & safety, or fraud detection.
• Strong programming skills in Python and/or TypeScript for building detection systems and automation.
• Experience with SQL and data analysis at scale (BigQuery, Snowflake, or similar).
• Experience building or fine-tuning ML/LLM-based classifiers for security or abuse detection.
• Familiarity with prompt injection, jailbreaking, and other LLM-specific attack vectors.
• Ability to investigate complex abuse patterns and translate findings into automated defenses.
• Familiarity with common attack patterns: phishing infrastructure, account takeover, credential stuffing, resource abuse.
• Clear communication skills for working across Security, Support, Legal, and Engineering teams.

Nice to have

• Experience at a platform company dealing with user-generated content or compute abuse (hosting providers, cloud platforms, developer tools).
• Background in fraud detection, payment abuse, or financial crime.
• Familiarity with device fingerprinting, IP reputation, and email validation services.
• Experience with CI/CD security tooling (SAST, SCA, Dependabot, Snyk).
• Knowledge of container security, Linux internals, or cloud infrastructure (GCP preferred).

Culture & Benefits

• Autonomous work environment with competitive salary and equity package, including 401(k) Program.
• Comprehensive health, dental, vision, and life insurance, along with short and long-term disability.
• Paid parental, medical, and caregiver leave, plus flexible time off (FTO) and holidays.
• Commuter benefits and a monthly wellness stipend.
• In-office set-up reimbursement and in-office amenities.
• Quarterly team gatherings and a commitment to diverse perspectives.