Key skills
Infrastructure SecuritySecurity ControlsThreat ModelingCloud Platform SecurityAmazon AWSMicrosoft AzureMulti-cloud NetworksOn-premises Datacenter SecurityContainer SecurityOrchestration SecurityAuthenticationAuthorizationSecurity Automation and ToolingAIArtificial IntelligenceOpenAIAWSAzureKubernetesCI/CDLeadershipCommunication
About this role
OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. They are seeking a Principal Security Engineer to join their Infrastructure Security team, responsible for protecting the foundations of OpenAI’s research and production environments and driving execution on high-impact infrastructure security programs.
Responsibilities:
- Own end-to-end security outcomes for one or more critical infrastructure areas, including multi-quarter strategy, roadmap, and delivery
- Design and build security controls across diverse layers (e.g., physical hardware, firmware/BMC, OS, Kubernetes, networks, and CI/CD) to defend against sophisticated adversaries and insider threats
- Lead cross-functional programs to deploy security enhancements and control changes across broad-scale infrastructure, balancing security guarantees with reliability and velocity
- Take a generalist approach to building security controls, balancing a mix of security expertise and broad technical skillsets to adapt to evolving challenges
- Lead and/or drive threat modeling and design reviews for major infrastructure changes, ensuring strong security foundations and operational excellence
- Mentor and level up engineers across InfraSec and partner teams, contributing to a strong security culture through guidance, reviews, and technical leadership
Requirements:
- Deep understanding of security principles, best practices, and common vulnerabilities, including strong security judgment under ambiguity
- A proactive mindset, with the ability to identify and address security gaps or inefficiencies through automation and tooling
- Expertise and curiosity about using frontier models and agents to effectively solve security challenges
- A track record of leading large, cross-org initiatives from concept to rollout, including navigating tradeoffs, driving alignment, and delivering measurable risk reduction
- Deep expertise in the security of cloud platforms (e.g., Amazon AWS, Microsoft Azure), especially securing multi-cloud networks and infrastructure, and designing cloud-agnostic systems
- Experience securing on-prem deployments and datacenters from construction to multi-tenant use
- Familiarity with container security, orchestration security, and authentication/authorization
- Strong analytical and problem-solving skills, with an ability to think critically and objectively assess security risks
- Excellent communication skills, with the ability to convey complex security concepts to executive, technical, and non-technical stakeholders
- Excitement about collaborating with cross-functional teams to build secure, reliable systems that scale globally