Platform Security Engineer, OpenBMC
$405kFull-time
Anthropic
ABOUT ANTHROPIC
Anthropic’s mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.ABOUT THE ROLE
Anthropic is standing up a founding team to own the OpenBMC-based management firmware running across its server fleet. You would be one of the first engineers on it. That means production firmware and manageability features (board bring-up through production) on one side, and hardening that firmware against sophisticated adversaries on the other. Security is a first-class constraint in everything you ship: you'll write firmware to a high security bar and partner closely with our firmware security and hardware engineers on secure boot, signing, and attestation.KEY RESPONSIBILITIES
Production and manageability: * Design, build, and ship OpenBMC firmware and manageability features for x86 and Arm (including GPU) platforms, from bring-up through production, using Yocto/OpenEmbedded * Build the management stack on DMTF/OCP standards (MCTP, PLDM, SPDM, Redfish, RDE) and IPMI/KCS: sensors, telemetry, inventory, logging, RAS * Implement BMC-to-BIOS/host communications, eSPI/LPC, thermal/fan/power management (PMBus) * Work the hardware/firmware boundary: I2C/I3C, SPI, PCIe, SMBus, device trees, U-Boot, Linux Security and hardening: * Own the BMC security posture: secure and measured boot, root of trust, attestation (SPDM), authenticated update (PLDM FW Update), rollback protection, attack-surface reduction * Lead threat modeling and secure design reviews; run coordinated vulnerability disclosure with vendors and the upstream community * Build verification tooling: static analysis, fuzzing, firmware extraction, CI gatingMINIMUM QUALIFICATIONS
- Strong technical cross-functional leadership skills, direction setting
- Hands-on OpenBMC/BMC firmware experience on x86 and/or Arm, from bring-up
- A security mindset applied to firmware, not bolted on afterward
- Upstream contributions to OpenBMC, U-Boot, DMTF, or OCP
- Working knowledge of out-of-band and in-band management, the relevant DMTF
- Strong debugging and a track record of shipping reliable, well-tested code.
- Clear communication across internal teams and external vendors
- Ability to work effectively across hardware and software boundaries
- Knowledge of NIST firmware security guidelines and hardware security
PREFERRED QUALIFICATIONS
* 8+ years of experience in systems security, with at least 5 years focused on firmware and hardware security (firmware, bootloaders, and OS-level security) * Hardware roots of trust and attestation: Caliptra, OCP S.A.F.E., TPM/HRoT,SPDM
- Memory-safe systems code in Rust or Zig
- Firmware vulnerability research, reverse-engineering, or fuzzing
- Previous work with AI/ML infrastructure security
$405,000—$405,000 USD
LOGISTICS
Minimum education: Bachelor’s degree or an equivalent combination of education, training, and/or experience Required field of study: A field relevant to the role as demonstrated through coursework, training, or professional experience Minimum years of experience: Years of experience required will correlate with the internal job level requirements for the position Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices. Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this. We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work. We think AI systems like the ones we're building have enormous social and ethical implications. We think this makes representation even more important, and we strive to include a range of diverse perspectives on our team. Your safety matters to us. To protect yourself from potential scams, remember that Anthropic recruiters only contact you from @anthropic.com email addresses. In some cases, we may partner with vetted recruiting agencies who will identify themselves as working on behalf of Anthropic. Be cautious of emails from other domains. Legitimate Anthropic recruiters will never ask for money, fees, or banking information before your first day. If you're ever unsure about a communication, don't click any links—visit anthropic.com/careers [ directly for confirmed position openings.HOW WE'RE DIFFERENT
We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts. And we value impact — advancing our long-term goals of steerable, trustworthy AI — rather than work on smaller and more specific puzzles. We view AI research as an empirical science, which has as much in common with physics and biology as with traditional efforts in computer science. We're an extremely collaborative group, and we host frequent research discussions to ensure that we are pursuing the highest-impact work at any given time. As such, we greatly value communication skills. The easiest way to understand our research directions is to read our recent research. This research continues many of the directions our team worked on prior to Anthropic, including: GPT-3, Circuit-Based Interpretability, Multimodal Neurons, Scaling Laws, AI & Compute, Concrete Problems in AI Safety, and Learning from Human Preferences.COME WORK WITH US!
Anthropic is a public benefit corporation headquartered in San Francisco. We offer competitive compensation and benefits, optional equity donation matching, generous vacation and parental leave, flexible working hours, and a lovely office space in which to collaborate with colleagues. Guidance on Candidates' AI Usage: Learn about our policy [ for using AI in our application process.Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Platform Security Engineer, OpenBMC in New York, NY vacancy
$405k
United States Digital Space LLC in New York is seeking an experienced engineer focused on platform security. This role will validate system integrity and ensure proper attestation mechanisms while writing code and owning services crucial to the organization's mission. Applicants...Suggested- A leading technology firm is looking for an exceptional engineer to join their Detection Platform team in New York. This role involves architecting and implementing data pipelines for security telemetry and developing ML-powered detection systems. Ideal candidates have...Suggested
$125k - $175k
Smartsheet Inc. is seeking a Software Engineer II to join the Security Engineering team, focusing on automating solutions and ensuring FedRAMP compliance... ...a unique opportunity to grow at the intersection of platform engineering and security. Responsibilities include...SuggestedRemote job- of SVP, Vulnerability Management & Cloud Security Posture Platform Engineering New York, NY, United States and 2 more Job Description We’re seeking a team member for the role of SVP, Vulnerability Management & Cloud Security Posture Platform Engineering to join our Cybersecurity...SuggestedWork experience placementWorldwideFlexible hours
- A leading infrastructure management company is looking for a Platform Engineer specializing in Security to enhance their Kubernetes platform. You will develop security features, ensure effective customer interaction, and support distributed systems. Expect to work with...Suggested
- A cutting-edge investment firm in the United States is seeking a skilled security developer to be responsible for the development of data loss prevention systems and host intrusion detection systems. The ideal candidate will have a strong background in information security...
$120k - $140k
Resend is hiring a Security Engineer to enhance their platform's security foundations. This role is fully remote, allowing work across Americas or European timezones. The ideal candidate will have experience securing production infrastructure and a solid understanding of...Remote job- A technology firm in New York is seeking a Security Platform Developer to enhance its DevSecOps capabilities. The role focuses on transforming raw logs into actionable metrics and building dashboards using New Relic. Ideal candidates will have strong programming skills...
- Insight Global is seeking a Sr. Information Security Engineer for a remote contract position within a large financial institution. The role... ...experience in Cloud Security, with strong skills in cloud platforms, CSPM tools like Prisma Cloud, and configuration tools such...Remote jobContract work
- The Trade Desk, Inc. is looking for a Lead/Senior Software Engineer to join their Platform Security team in New York. This role involves the design and evolution of large-scale security services, requiring 7+ years of experience and expertise in infrastructure as code....
- Chainguard is looking for a Senior Security Engineer for their AI Platform. This role involves managing the AI platform's security posture, monitoring product roadmaps, and ensuring compliance with security protocols. You will develop internal tools and maintain relationships...Remote jobFlexible hours
- DKKD Staffing is seeking an MCP Gateway / AI Security Platform Engineer for a contract lasting 9-12 months, primarily remote but with potential onsite work in downtown Manhattan. Candidates must be US Citizens or Legal/Permanent Residents. The role demands strong experience...Remote jobPermanent employmentContract work
- Title MCP Gateway / AI Security Platform Engineer Duration Contract 9-12 months, possibly longer. Pay Market Rate Location Remote/Hybrid: these are 90% offsite (maybe 100% for some). Onsite is downtown Manhattan. Note All expenses paid by the client for travel, lodging...Daily paidPermanent employmentContract workRemote work
- Dormont Manufacturing Co is seeking a mid-level engineer for its Security Partnership Product Engineering team in New York City. This role involves building AI-powered security tools that enhance product safety by leveraging LLM and Azure OpenAI technologies. The ideal...
- Feedinkoo is seeking a Software Engineering Intern to collaborate with our team in building features that enhance security for various organizations. You will start coding within your first week and work on exciting projects that tackle real-world security challenges....Internship
- A leading cybersecurity company in the United States is seeking a Principal Engineer specialized in AI-powered security capabilities. This remote role will define technical directions and set architectural standards for security-sensitive product experiences. Candidates...Remote job
- Senior Security Operations Platform Engineer Location: New York, NY 10004 (Hybrid) Experience: 10+ years in SOC roles (analyst/engineer/architect/consultant). Responsibilities: As Senior Security Operations Platform Engineer, you will partner with SOC leadership, engineering...Shift work
- Dormont Manufacturing Co in Kentucky is seeking a proactive Staff Security Software Engineer to safeguard the company’s cybersecurity landscape. This role requires deep expertise in security integrations, cloud architecture, and AI-driven workflows, along with strong leadership...Work at office
$121.4k - $166.7k
...collaborate with some of the most talented people in the industry. Rockstar is on the lookout for a passionate Senior Security Platform Engineer who is skilled at diving into complex software designs to identify security flaws and vulnerabilities. This is a full...Full timeWork at office$130k - $160k
...source for open source. By delivering hardened, secure, and production-ready builds of all the open source software engineers and AI agents rely on, Chainguard helps... ...Spark Capital. Senior Security Engineer, AI Platform The role in a nutshell AI moves fast. Embarrassingly...Local areaRemote workFlexible hoursShift work- A leading cloud platform provider in the United States seeks a Security Engineer to enhance application security by developing tools and implementing monitoring systems. Candidates should possess over 6 years of experience in software engineering or security with a strong...
$200k
Senior Software Security Engineer (Remote, US) Up to $200k Base + Equity Join a fast-growing Series C fintech on a mission to empower working Americans with better financial tools. This is a hands-on, code-first role where Keycloak and Spring Boot are central to securing...Remote workHome office$204k - $281k
Wiz is seeking an experienced Software Security Engineer to support its corporate platforms, focusing on developing robust solutions for enterprise security. Candidates should have significant experience in secure development practices, including Python programming and...- Slope, located in New York, NY, is looking for a Security Engineer to design and implement robust security measures for their platform. The role involves working closely with various teams to identify and mitigate risks while ensuring compliance with security standards....
$104k - $156k
...Overview Job Overview As an Advanced Security Engineer focused on Endpoint Security, you will design, build, and operate security controls... ...standards (e.g., GDPR, HIPAA) Exposure to other cloud platforms (AWS, GCP) Salary and Benefits Relativity is committed...Remote work- ...London offices. You’ll own application security at a company where the app layer is the... ...drive vulnerability remediation across a platform serving 300K+ experts and enterprise clients... ...the safe path the easy path for 50+ engineers Threat models for new features and architecture...Remote workShift work
$178.5k
..., Windows, iOS, and Android, our search engine, and the DuckDuckGo subscription. Our culture... ...! Your Team and Role Working on the Security Functional Team, you'll play a pivotal... ...a Senior Web Security Engineer, Browser Platform , you'll conduct browser security audits...Full timeWork at officeLocal areaRemote workFlexible hours- A leading online protection company in the United States is looking for a Senior Web Security Engineer to enhance security across various products. Responsibilities include conducting audits and managing security scanning. The ideal candidate has over 7 years of experience...Remote job
$185k - $232k
...infrastructure that improves financial outcomes, you'll feel at home here. About the Role We're looking for a Senior Platform Security Engineer to help build and secure the infrastructure that powers Monstro's AI platform. This is a hands-on engineering role...Day shift- A leading blockchain company in the United States is searching for a Product Security Engineer to secure core technologies. This role involves analyzing security issues, designing tools, and providing security guidance. Candidates should have a B.S. or M.S. in Computer...Flexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Platform Security Engineer, OpenBMC. Be the first to apply!
Related searches
- senior platform engineer New York, NY
- client platform engineer New York, NY
- platform engineering manager New York, NY
- platform developer New York, NY
- data platform engineer New York, NY
- platform engineer New York, NY
- security solutions engineer New York, NY
- network security engineer New York, NY
- sr security engineer New York, NY
- systems security engineer New York, NY

