Security Engineer (AI)

TL;DR

Security Engineer (AI): Defending hirify.global's platform from exploitation by detecting and shutting down phishing deployments, preventing cryptomining, stopping LLM token farming, and protecting users. Focus on building guardrails for AI-generated code, detecting prompt injection attacks at scale, and using LLMs as a defensive tool against abuse.

Location: Must be based in or willing to work from the Foster City, CA office three days a week (Monday, Wednesday, and Friday).

Salary: $210K – $265K

Company

hirify.global is the agentic software creation platform that enables anyone to build applications using natural language.

What you will do

• Design and implement LLM guardrails that detect abuse scenarios in AI-generated code and agent interactions.
• Build AI-powered detection systems that use LLMs to identify malicious patterns, classify threats, and automate response decisions.
• Build and operate abuse detection systems that identify phishing, cryptomining, account takeover, and financial fraud across millions of daily user actions.
• Design automated response mechanisms that enforce platform policies without manual intervention.
• Analyze attack patterns using BigQuery and Hex, turning investigation findings into new detection rules.
• Maintain and extend internal detection tools that continuously monitor user activity.

Requirements

• 4+ years of experience in security engineering, anti-abuse, trust & safety, or fraud detection.
• Strong programming skills in Python and/or TypeScript for building detection systems and automation.
• Experience with SQL and data analysis at scale (BigQuery, Snowflake, or similar).
• Experience building or fine-tuning ML/LLM-based classifiers for security or abuse detection.
• Familiarity with prompt injection, jailbreaking, and other LLM-specific attack vectors.
• Clear communication skills for working across Security, Support, Legal, and Engineering teams.

Nice to have

• Experience at a platform company dealing with user-generated content or compute abuse (hosting providers, cloud platforms, developer tools).
• Background in fraud detection, payment abuse, or financial crime.
• Familiarity with device fingerprinting, IP reputation, and email validation services.
• Experience with CI/CD security tooling (SAST, SCA, Dependabot, Snyk).
• Knowledge of container security, Linux internals, or cloud infrastructure (GCP preferred).

Culture & Benefits

• Competitive Salary & Equity
• 401(k) Program with a 4% match (*US Only*)
• Health, Dental, Vision and Life Insurance
• Flexible Time Off (FTO) + Holidays
• Autonomous Work Environment
• Quarterly Team Gatherings