Security Engineer, Detection and Response

About this role

OpenAI seeks a Security Engineer to build and operate detection and response systems protecting the company's infrastructure, intellectual property, and customer data. You'll develop detection pipelines, automate incident response workflows, and partner with infrastructure teams to identify security gaps across endpoints, cloud, and AI-scale compute environments.

What you'll do

• Build detection pipelines and tooling with rule lifecycle management, quality measurement, and safe rollout patterns
• Automate security response workflows to reduce investigation toil and improve containment speed
• Partner with security and infrastructure teams to define telemetry requirements and threat models for new systems
• Identify and prioritize detection gaps across endpoints, identity, cloud, Kubernetes, and datacenter infrastructure
• Evaluate security concerns specific to frontier AI environments, including agent-based threats at scale
• Conduct threat modeling for new infrastructure to ensure detection and response requirements are built in from the start

What they're looking for

• Threat detection and incident response experience
• Modern adversary tactics, techniques, and procedures (TTPs)
• Kubernetes and containerized environments
• Cloud platforms (AWS, Azure, GCP, OCI)
• Infrastructure and datacenter security (firmware, network segmentation)
• Scripting and automation development
• Threat modeling and security architecture
• Cross-team communication and stakeholder alignment