Platform Security Engineer (OpenBMC)

TL;DR

Platform Security Engineer (OpenBMC): Building and hardening management firmware for server fleets with an accent on secure boot, attestation, and attack-surface reduction. Focus on designing robust OpenBMC firmware, implementing security standards like SPDM/MCTP, and leading threat modeling for high-performance AI infrastructure.

Location: Must be based in or able to work from San Francisco, New York City, or Seattle (Hybrid: 25% office attendance required)

Salary: $405,000 USD

Company

Anthropic is an AI safety and research company dedicated to building reliable, interpretable, and steerable AI systems.

What you will do

• Design and ship OpenBMC firmware for x86 and Arm platforms using Yocto/OpenEmbedded.
• Implement management stack standards including MCTP, PLDM, SPDM, and Redfish.
• Own the BMC security posture, including secure boot, root of trust, and attestation.
• Lead threat modeling, secure design reviews, and vulnerability disclosure processes.
• Develop verification tooling such as static analysis, fuzzing, and CI gating.
• Collaborate across hardware and software boundaries to ensure firmware reliability.

Requirements

• 8+ years of experience in systems security, with 5+ years in firmware and hardware security.
• Hands-on experience with OpenBMC/BMC firmware on x86 or Arm.
• Proficiency in C/C++, Python, and Linux user-space/kernel fundamentals.
• Experience with Yocto/OpenEmbedded and hardware interfaces like I2C, SPI, and PCIe.
• Knowledge of NIST firmware security guidelines (SP 800-193, 800-147/155).
• Must be authorized to work in the US (Visa sponsorship available).

Nice to have

• Experience with hardware roots of trust (Caliptra, TPM, OCP S.A.F.E.).
• Proficiency in memory-safe languages like Rust or Zig.
• Background in firmware vulnerability research or reverse-engineering.
• Previous experience with AI/ML infrastructure security.

Culture & Benefits

• Competitive compensation and benefits package.
• Generous vacation and parental leave policies.
• Flexible working hours and collaborative office environments.
• Optional equity donation matching.
• Focus on high-impact, large-scale AI research in a collaborative team setting.