Security Engineer, Application Security

Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI’s technology, people, and products. As a Security Engineer, Application Security you will be responsible for identifying and mitigating security vulnerabilities within software applications through building security tools, code reviews, penetration testing, and security assessments. We’re looking for people who will work closely with development teams to ensure secure coding practices are integrated throughout the software development lifecycle, preventing security risks before they emerge. You will also provide security guidance to developers and other stakeholders, fostering a culture of security awareness within the organization. Conduct regular security assessments, code reviews, and penetration testing to identify vulnerabilities in applications and software. Design, develop, and implement security tools, frameworks, and methodologies to protect applications against security threats. Work closely with development teams to ensure security best practices are integrated throughout the software development lifecycle (SDLC), including secure coding guidelines. Conduct threat modeling and risk assessments to proactively identify potential risks and develop mitigation strategies. You will track, analyze, and manage vulnerabilities in applications, providing guidance and support for remediation efforts. Assist in investigating, analyzing, and responding to security incidents related to applications, ensuring timely resolution and documentation of incidents.