Systems Software Engineer, Security, First Party Hardware

About this role

OpenAI seeks a Security Engineer to design and own end-to-end security for first-party AI hardware systems, spanning boot integrity, device identity, attestation, firmware security, and data center-scale deployment. You'll partner across hardware, firmware, and operations teams to turn threat models into validated, production-ready security architectures.

What you'll do

• Define security requirements, threat models, and validation strategies for hardware platforms from design through production
• Design secure boot, measured boot, roots of trust, and firmware resilience mechanisms across heterogeneous devices
• Own device identity, provisioning, enrollment, attestation, and key-management across manufacturing and deployment
• Harden management interfaces (BMCs, Redfish, SSH, mTLS) and operational access paths
• Drive security requirements for manufacturing, supply chain, firmware signing, encryption, and RMA/decommissioning
• Investigate hardware/firmware security issues, assess risk, and drive fixes across engineering teams

What they're looking for

• Hardware and embedded systems security (7+ years)
• Secure boot, measured boot, TPMs, and hardware roots of trust
• Systems programming in C, C++, or Rust
• Applied cryptography for boot, attestation, TLS/mTLS, and key lifecycle
• Hardware-software interfaces (SPI, I2C, PCIe, JTAG, UART, board-level debug tools)
• Experience shipping secure hardware platforms or accelerators
• Cross-functional collaboration and threat modeling
• End-to-end security program ownership and technical communication

Benefits

• Hybrid work arrangement (3 days/week onsite in San Francisco)
• Relocation assistance available