Offensive Security Engineer (AI)

TL;DR

Offensive Security Engineer (AI): Conducting deep penetration testing of agent-powered products and infrastructure with an accent on identifying vulnerabilities in AI-integrated surfaces. Focus on hunting for exploits in the interaction between models and tools, automating offensive workflows, and driving durable security fixes.

Location: Must be based in the US (Remote or onsite in San Francisco, New York City, Seattle, or Washington, DC)

Salary: $277.6K – $490K + Equity

Company

hirify.global is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity.

What you will do

• Conduct deep penetration tests of agent-powered products, including web applications, APIs, cloud services, and model-integrated product surfaces.
• Hunt for exploitable vulnerabilities in the interactions between applications, infrastructure, tools, and AI models.
• Perform code and architecture reviews to validate risks and identify novel failure modes.
• Produce actionable findings with reproduction steps, impact assessment, and remediation guidance.
• Partner with engineering teams to drive fixes and improve secure design patterns across agentic products.
• Build tools and automation to scale penetration testing using hirify.global technologies.

Requirements

• 7+ years of hands-on experience in penetration testing, product/application/cloud security, or equivalent offensive security roles.
• Deep expertise in exploiting and remediating vulnerabilities in complex production systems.
• Experience assessing AI-powered systems, specifically regarding prompt injection, confused deputies, and unsafe tool use.
• Mastery of complex stacks: Kubernetes, containers, CI/CD pipelines, Python-based services, and React frontends.
• Proven experience performing offensive security assessments in at least one hyperscaler cloud (Azure preferred).
• Work authorization and residency in the United States.

Nice to have

• Background or expertise in AI or data science.
• Prior experience working in tech startups or fast-paced environments.
• Experience in Software Engineering, SRE, Detection Engineering, or IT Infrastructure.

Culture & Benefits

• Opportunity to secure cutting-edge agentic products like Codex and Operator.
• Focus on a robust security culture that prioritizes impact and enables researchers.
• Competitive compensation including significant equity.
• Collaborative environment driving the safety and deployment of AGI.