Technical Scaled Abuse Threat Investigator

About Anthropic

Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

About The Role: Technical Scaled Abuse Threat Investigator

We are looking for a Technical Scaled Abuse Threat Investigator to join our Threat Intelligence team. In this role, you will be responsible for detecting, investigating, and disrupting large-scale misuse of Anthropic's AI systems, including model distillation, account abuse, fraud, scams, and other forms of scaled exploitation.

You will combine open-source research with analysis of internal data to understand how sophisticated adversaries gain access to Anthropic systems and conduct abuse at scale. Your work will directly inform our defenses against threat actors who seek to exploit our products for financial gain, competitive advantage, or to cause widespread harm.

Important context: In this position you may be exposed to explicit content spanning a range of topics, including those of a sexual, violent, or psychologically disturbing nature. This role may require responding to escalations during weekends and holidays.

Responsibilities

• Detect and investigate large-scale abuse patterns including model distillation, unauthorized API access, account farming, fraud schemes, and scam operations.
• Develop abuse signals and tracking strategies to proactively identify scaled adversarial activity and coordinated abuse networks.
• Conduct technical investigations using SQL, Python, and data science methodologies to analyze large datasets and uncover sophisticated abuse patterns.
• Create actionable intelligence reports on new attack vectors, vulnerabilities, and threat actor TTPs targeting AI systems at scale.
• Utilize investigation findings to implement systematic improvements to our safety approach and mitigate harm.
• Study trends internally and in the broader ecosystem to anticipate how AI systems could be exploited, generating and publishing reports.
• Build and maintain relationships with external threat intelligence partners and information sharing communities.
• Work cross-functionally to build out our threat intelligence program, establishing processes, tools, and best practices.
• Forecast how abuse actors will leverage advances in AI technology and inform safety-by-design strategies.

You may be a good fit if you

• Have strong proficiency in SQL and Python with a data science background.
• Have experience with large language models and understanding of how AI technology could be exploited at scale.
• Have subject matter expertise in abusive user behavior detection, fraud patterns, account abuse, or platform integrity.
• Have experience tracking threat actors across surface, deep, and dark web environments.
• Can derive insights from large datasets to make key decisions and recommendations.
• Have experience with threat actor profiling and utilizing threat intelligence frameworks.
• Have strong project management skills and ability to build processes from the ground up.
• Possess excellent communication skills to collaborate with cross-functional teams and present to leadership.

Strong candidates may also have

• Experience at a major technology platform working on trust and safety, fraud, or abuse investigations.
• Background in AI safety, machine learning security, or technology abuse investigation.
• Experience building and scaling threat detection systems or abuse monitoring programs.
• Experience with financial crime investigation or fraud analytics.
• Fluency in Mandarin Chinese and/or Russian (speaking, reading, and writing) combined with a nuanced understanding of the geopolitical landscape and cultural context of the respective regions.
• Active Top Secret security clearance.

Key skills/competency

• Abuse Detection
• Threat Intelligence
• SQL
• Python
• Data Science
• Fraud Investigation
• AI Exploitation
• Platform Integrity
• Adversarial Activity Tracking
• Security Clearance (desirable)