Security Engineer, Detection and Response (Cybersecurity)

TL;DR

Staff Security Engineer (Detection and Response, AI): Build sophisticated detection systems and automated response capabilities to protect AI infrastructure, training data, and model deployments with an accent on AI-specific threats like prompt injection, data poisoning, and model extraction. Focus on proactive threat hunting across GPU clusters, incident response coordination, and developing detection-as-code frameworks for distributed environments.

San Francisco, CA. This role can be based out of our San Francisco office. US-based role for full-time employees.

Compensation: $200K - $240K

Company

AI platform transforming how the world works with cutting-edge AI/AGI systems.

What you will do

• Design and implement detection strategies for AI-specific threats including prompt injection, model extraction, data poisoning, adversarial examples, and unauthorized access across distributed infrastructure.
• Build automated response playbooks and orchestration workflows for self-healing security systems that reduce response times and remediate compromised endpoints.
• Lead incident response coordination across teams, conduct forensic investigations on training pipeline attacks, and draft incident communications.
• Proactively hunt for threats in GPU clusters and training infrastructure by analyzing model outputs and identifying visibility gaps.
• Develop detection-as-code frameworks, onboard telemetry from AI infrastructure, and create dashboards for security metrics.
• Collaborate with AI Security, Cloud Infrastructure, Software Security Engineering, and AI researchers to translate threat research into production detections.
• Maintain 24/7 on-call rotation for critical AI security incidents.

Requirements

• 3-5+ years in security operations, detection engineering, or incident response securing AI/ML infrastructure, high-performance computing, or distributed systems at scale.
• Strong programming in Python, KQL, SPL or similar for custom detection logic and automation in cloud-native environments.
• Experience with SIEM platforms, detection technologies, and forensic techniques for novel attacks in distributed environments.
• Self-directed mindset with track record in securing IP, automating responses, and proactive threat hunting.
• Alignment with company values: Connect across teams, Challenge assumptions, Own protection of AI platform.

Culture & Benefits

• Generous PTO plus company holidays.
• Medical, dental, vision coverage for family; paid parental leave (16 weeks); fertility support.
• Early-detection cancer testing, FSA, HSA with company contribution.
• Annual stipends for wellness, learning/development.
• Company-wide and team off-sites.
• Competitive compensation, stock options, 401k.