← Back to all jobs
Chainguard

Senior Security Engineer (AI Platform)

Chainguard

5h ago

0$130k - $160kDevUnited Stateshimalayas
Information-SecuritySecurity-EngineeringAI-Platform-SecurityCloud-SecurityIT-SecurityAI-Security-EngineerSenior-Security-EngineerPrincipal-AI-Security-ArchitectSenior-Engineer---SecuritySenior

Job Description

Chainguard is the trusted source for open source. By delivering hardened, secure, and production-ready builds of all the open source software engineers and AI agents rely on, Chainguard helps organizations build faster, stay compliant, and eliminate risk. Our customers include Fortune 500 enterprises and global industry leaders, including Anduril, Canva, Fortinet, Hewlett Packard Enterprise, OpenAI, Snap Inc., and Snowflake. Chainguard is venture-backed by leading investors, including Amplify, IVP, Kleiner Perkins, Lightspeed Venture Partners, Mantis VC, Redpoint Ventures, Sequoia Capital, and Spark Capital.Senior Security Engineer, AI PlatformIT Engineering · Cyber Resiliency · RemoteThe role in a nutshellAI moves fast. Embarrassingly fast. And right now, most corporate IT teams are reacting to it, scrambling to figure out what employees are pasting into ChatGPT while the next model drop quietly changes the rules again.You're going to change that at Chainguard.This is a brand-new role sitting within the IT Engineering group inside Cyber Resiliency. You'll own our managed AI platform posture end-to-end: anticipating what's coming, governing how we use it, tracking what it costs us, building the tooling that keeps it safe, and making sure everyone from engineering to the exec team is using AI in ways that are fast, secure, and defensible.This is an individual contributor role. You won't be managing people but you'll be managing chaos. There's no playbook yet. You're writing it.What you'll doStay ahead of the roadmap (literally, it's the job)Continuously monitor Claude and ChatGPT product roadmaps, release notes, and vendor communications to anticipate platform changes before they landTranslate upcoming features into proactive configuration, policy, and enablement decisions not reactive scramblesMaintain active relationships with Anthropic and OpenAI account teams; flag ToS updates, data processing agreement changes, and acceptable use policy shifts before they become surprisesOwn AI platform administration and configuration governanceProvide expert-level administration of AI console environments across both platformsManage Claude and ChatGPT organizational settings files using Git, version-controlled, reviewed, and deployed like the infrastructure they areOwn API key lifecycle management and secrets hygiene for all AI integrationsManage SSO/SCIM provisioning for AI platforms; ensure access is tight, auditable, and cleanBuild financial visibility and usage intelligenceDevelop token tracking and financial dashboards so leadership actually knows what AI costs us by team, by use case, by monthBuild anomaly detection on AI spend; if something spikes, you catch it before accounting doesProduce regular usage trend reports and ROI framing for leadership that goes beyond "we use AI a lot"Develop MCP servers and agentic AI toolingBuild and maintain internal MCP servers that extend AI capabilities into our workflows securelyBe the in-house subject matter expert on agentic AI builds such as architecture, risk, failure modes, and the parts that go sideways in ways no one anticipatedWrite code. Python and/or TypeScript. AI-augmented is fine (encouraged, even), but you need to own what shipsHarden our AI security postureIdentify and mitigate prompt injection risks in internal AI-powered toolsEnsure no sensitive or regulated data (PII, PCI, PHI) flows into AI prompts. Architect the guardrails, not just the policyMaintain awareness of AI-specific incident response options; when something goes wrong with an AI integration, you're in the roomIntegrate with AI governance and enablement programsServe as IT Engineering's primary liaison to the AI Adoption Committee bringing operational grounding to adoption decisionsParticipate actively in the AI Working Group; connect platform capabilities to how the company actually uses themPartner closely with the Governance & Trust team, who leads AI policy and governance. Your job is to be their technical counterpart by implementing, informing, and flagging issues, not owning the policy itselfWhat we're looking forRequiredOutstanding interpersonal skills and team-first mentality5+ years in security engineering, IT engineering, or a DevOps role with meaningful security responsibility throughoutHands-on DevOps background: Git-based config management, CI/CD, infrastructure-as-code mindset applied to platform administrationDirect, hands-on experience administering Claude (Anthropic) and/or ChatGPT (OpenAI) at an organizational level. This isn't a "I use it every day" checkbox; we mean console administration, managed settings, and enterprise controlsWorking knowledge of AI risk factors: prompt injection, data leakage, agentic failure modes, and incident response options when AI systems behave unexpectedlyComfortable writing production-quality code in Python and/or TypeScript especially for dashboards, automation, and MCP server developmentExperience with GCP and Cloud native environmentsF