Technical Policy Manager, Cyber Harms (AI/Cybersecurity)

TL;DR

Technical Policy Manager, Cyber Harms (AI/Cybersecurity): Leading the prevention of AI misuse in the cyber domain by applying deep technical expertise to inform and design safety systems. Focus on creating comprehensive cyber threat models, developing usage policies, and translating complex cyber threat concepts into concrete technical safeguards and actionable policies.

Location: This role is Remote-Friendly, with required travel to offices in San Francisco, CA or Washington, DC. All staff are expected to be in an office at least 25% of the time. Visa sponsorship is available.

Salary: $320,000–$405,000 USD Annual Salary

Company

hirify.global is a public benefit corporation dedicated to creating reliable, interpretable, and steerable AI systems for the benefit of users and society.

What you will do

• Lead and develop a team focused on cyber threat modeling and evaluation frameworks for AI models.
• Design and execute capability evaluations to assess cyber-relevant AI model capabilities.
• Develop and iterate on usage policies for responsible AI use in cyber security, balancing potential and misuse.
• Serve as the primary domain expert, advising on threat landscapes and mitigation strategies across cross-functional teams.
• Collaborate with ML engineers to train safety systems against adversarial attacks and analyze their performance.
• Contribute to external communications and monitor emerging technologies for new risks and mitigation strategies.

Requirements

• M.S. or PhD in Computer Science, Cybersecurity, or equivalent professional experience.
• 5+ years of hands-on experience in cybersecurity, including vulnerability research, exploit development, or penetration testing.
• 2+ years of experience managing technical teams or leading complex technical projects.
• Proficiency in programming (Python preferred) for scientific computing and data analysis.
• Deep expertise in both offensive and defensive cybersecurity techniques and measures.
• Demonstrated ability to create threat models and translate technical cyber risks into policy frameworks.

Nice to have

• Background in AI/ML systems, particularly with large language models.
• Experience developing ML-based security systems or adversarial ML research.
• Published security research or participated in bug bounty programs.
• Certifications such as OSCP, OSCE, or GXPN.

Culture & Benefits

• Competitive compensation, benefits, and optional equity donation matching.
• Generous vacation and parental leave with flexible working hours.
• Collaborative team culture focused on high-impact AI research.
• Emphasis on advancing long-term goals of steerable, trustworthy AI.