← all jobs

[Remote] Staff Security Engineer (AI Platform)

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. Chainguard is the trusted source for open source, delivering hardened, secure, and production-ready builds of open source software. They are seeking a Staff Security Engineer for their AI Platform to own the managed AI platform posture end-to-end, ensuring secure and compliant use of AI technologies across the organization.

Responsibilities

  • Continuously monitor Claude and ChatGPT product roadmaps, release notes, and vendor communications to anticipate platform changes before they land
  • Translate upcoming features into proactive configuration, policy, and enablement decisions not reactive scrambles
  • Maintain active relationships with Anthropic and OpenAI account teams; flag ToS updates, data processing agreement changes, and acceptable use policy shifts before they become surprises
  • Provide expert-level administration of AI console environments across both platforms
  • Manage Claude and ChatGPT organizational settings files using Git, version-controlled, reviewed, and deployed like the infrastructure they are
  • Own API key lifecycle management and secrets hygiene for all AI integrations
  • Manage SSO/SCIM provisioning for AI platforms; ensure access is tight, auditable, and clean
  • Develop token tracking and financial dashboards so leadership actually knows what AI costs us by team, by use case, by month
  • Build anomaly detection on AI spend; if something spikes, you catch it before accounting does
  • Produce regular usage trend reports and ROI framing for leadership that goes beyond "we use AI a lot"
  • Build and maintain internal MCP servers that extend AI capabilities into our workflows securely
  • Be the in-house subject matter expert on agentic AI builds such as architecture, risk, failure modes, and the parts that go sideways in ways no one anticipated
  • Write code. Python and/or TypeScript. AI-augmented is fine (encouraged, even), but you need to own what ships
  • Identify and mitigate prompt injection risks in internal AI-powered tools
  • Ensure no sensitive or regulated data (PII, PCI, PHI) flows into AI prompts. Architect the guardrails, not just the policy
  • Maintain awareness of AI-specific incident response options; when something goes wrong with an AI integration, you're in the room
  • Serve as IT Engineering's primary liaison to the AI Adoption Committee bringing operational grounding to adoption decisions
  • Participate actively in the AI Working Group; connect platform capabilities to how the company actually uses them
  • Partner closely with the Governance & Trust team, who leads AI policy and governance. Your job is to be their technical counterpart by implementing, informing, and flagging issues, not owning the policy itself

Skills

  • Outstanding interpersonal skills and team-first mentality
  • 8+ years in security engineering, IT engineering, or a DevOps role with meaningful security responsibility throughout
  • Hands-on DevOps background: Git-based config management, CI/CD, infrastructure-as-code mindset applied to platform administration
  • Direct, hands-on experience administering Claude (Anthropic) and/or ChatGPT (OpenAI) at an organizational level. This isn't a 'I use it every day' checkbox; we mean console administration, managed settings, and enterprise controls
  • Working knowledge of AI risk factors: prompt injection, data leakage, agentic failure modes, and incident response options when AI systems behave unexpectedly
  • Comfortable writing production-quality code in Python and/or TypeScript especially for dashboards, automation, and MCP server development
  • Experience with GCP and Cloud native environments
  • Familiarity with SSO/SCIM provisioning in SaaS-heavy environments (Okta or similar)
  • Strong written communication; you'll be translating technical AI platform changes into clear guidance for non-technical stakeholders regularly
  • Experience building or operating MCP (Model Context Protocol) servers
  • Background in financial/spend analytics tooling or BI dashboard development
  • Prior experience operating in a governance or compliance-adjacent role (you understand why Governance & Trust exists and you genuinely want to work with them)
  • You've broken an AI integration badly enough to have opinions about how to do it right

Benefits

  • Flexible & Remote-First Culture: Work remotely with team meetup opportunities, bi-annual destination summits, and a monthly stipend for coworking spaces, phone and internet costs.
  • Our Approach to Equity: Receive stock options upon hire and promotion. Plus, you can participate in secondary offerings and have 10 years to exercise your options (yes, you read that correctly: 10 years!).
  • 100% Covered Health Insurance: We cover 100% of your health, vision and dental insurance premiums for you and your dependents. Nothing comes out of your paycheck.
  • ∞ Flexible Time Off: Take the time you need – to do our best work, we need to recharge and reset.
  • 18 Weeks Paid Parental Leave: We offer 18 weeks for birthing parents and 12 weeks for non-birthing parents, with the option to use it all at once or throughout your child's first year.

Company Overview

  • Chainguard is a cloud-native development platform that provides low-to-zero CVE container images for building and running applications. It was founded in 2021, and is headquartered in Kirkland, Washington, USA, with a workforce of 201-500 employees. Its website is https://www.chainguard.dev.
  • Company H1B Sponsorship

  • Chainguard has a track record of offering H1B sponsorships, with 1 in 2026, 1 in 2024, 2 in 2023. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Senior Software/Fullstack Engineer

    Work from home Full-time role

    [Remote] Senior Substrate Layout Design engineer

    Work from home Full-time role

    [Remote] Sr. Clinical Research Associate

    Work from home Full-time role

    [Remote] Senior Software Engineer

    Work from home Full-time role

    [Remote] Customer Service Onboarding Specialist

    Work from home Full-time role

    Senior Machine Learning Engineer

    Work from home Full-time role

    Remote Amazon Data Entry Specialist – Precision Product Listing Management at careerzynith

    Work from home Full-time role

    [Remote] Remote | Energy & Real Property Legal Review Consultant — $40–$120/hour

    Work from home Full-time role

    Senior Data Scientist, MarTech Data Science and Measurement

    Work from home Full-time role

    Freelance Portuguese Data Annotation Specialist (100% Remote within Europe)

    Work from home Full-time role

    Data Services Specialist

    Work from home Full-time role

    Entry-Level Remote Data Entry Associate at careerzynith – $27/hr – No Experience Required – Work From Home

    Work from home Full-time role

    Experienced Customer Service Representative – Apple Products & Services Support

    Work from home Full-time role

    HR Assistant

    Work from home Full-time role

    Epic Analyst Senior, Radiant, FT, Days, - Remote

    Work from home Full-time role

    Remote HR Coordinator

    Work from home Full-time role

    Remote Event Planner

    Work from home Full-time role

    Remote Insurance Solutions Specialist

    Work from home Full-time role

    Remote Data Entry Associate – Work From Home Opportunity for Detail-Oriented Freshers at careerzynith (Entry Level, Flexible Schedule)

    Work from home Full-time role

    [Remote] Healthcare Finance & Operations Intern (Contract, ~3 Months)

    Work from home Full-time role

    Vice President, Finance

    Work from home Full-time role