Enterprise Security Engineer

About The Role of an Enterprise Security Engineer at OpenAI

As an Enterprise Security Engineer at OpenAI, you will be instrumental in safeguarding OpenAI's internal information systems, infrastructure, and processes. This role requires a proactive approach to security within a highly technical and employee-focused environment. You will collaborate closely with the IT and Security teams to fortify existing capabilities, develop new security measures, enforce robust policies, and vigilantly monitor internal systems against evolving security threats.

What You Will Do

• Develop and implement advanced security measures to protect OpenAI's information assets from unauthorized access, disclosure, or misuse.
• Monitor both internal and external systems for security threats, ensuring swift and effective responses to alerts.
• Contribute to and rigorously enforce OpenAI's comprehensive IT and Security policies and procedures.
• Work hand-in-hand with the IT department to harden infrastructure, applying best practices across AzureAD, GSuite, Github, and various other SaaS tools.
• Advise employees on optimal practices for endpoint security, as well as office AV and network infrastructure security.
• Devise novel sharing controls and associated monitoring mechanisms to protect company data, including intelligent group management and Data Loss Prevention (DLP) strategies.
• Employ forward-thinking security models such as "secure by default" and "zero trust" to establish sustainable, secure environments for all knowledge workers and developers.
• Identify and remediate vulnerabilities within internal systems, strictly adhering to data security best practices.
• Leverage OpenAI's own AI-driven models to enhance security detection and response, improve data classification, and other security-related tasks.
• Educate employees on the critical importance of data security and provide guidance on maintaining a secure digital environment.
• Contribute significantly to OpenAI's endpoint and cloud security roadmaps by staying abreast of the latest threats and recommending continuous improvements to our security posture.

What We Look For

You might thrive in this role if you possess:

• Demonstrated experience in protecting and managing macOS fleets.
• Proficiency in deploying and managing various endpoint security solutions, including management frameworks and EDR tools.
• Experience with leading public cloud service providers such as Amazon AWS and Microsoft Azure.
• Familiarity with identity and access management frameworks and protocols, including SAML, OAUTH, and SCIM.
• Experience with e-mail security protocols (e.g., SPF, DKIM, DMARC) and relevant controls.
• Intermediate or advanced proficiency in scripting languages like Python, Bash, or similar.
• Solid knowledge of modern adversary tactics, techniques, and procedures.
• Strong ability to empathize and collaborate effectively with colleagues, independently manage and execute projects, and strategically prioritize efforts for risk reduction.

Key skills/competency

• Enterprise Security
• Information Systems
• Cybersecurity
• Endpoint Security
• Cloud Security (AWS, Azure)
• Identity & Access Management (IAM)
• Data Loss Prevention (DLP)
• Scripting (Python, Bash)
• Zero Trust Architecture
• Threat Detection & Response