Lead Security Engineer
Alembic Limited
About Us Alembic is the pioneering Causal AI platform. We help the world's largest enterprises move past correlation to prove what actually drives business outcomes - the question marketing and growth teams have never been able to answer with confidence. Fortune 100 companies including Nvidia, Delta Air Lines, and Mars use Alembic to make multimillion-dollar decisions on trusted, causal evidence. We're backed by a $145M Series B from WndrCo (founded by Jeffrey Katzenberg), Jensen Huang, Joe Montana, Prysm Capital, and Accenture. Our models run on our own NVIDIA DGX SuperPOD built on Grace Blackwell infrastructure - one of the fastest private supercomputers in the world. (We've melted GPUs getting here.) About the Role We're looking for a lead-level Security Engineer and Architect to own system, network, and host security end-to-end for a rapidly growing on-prem, Kubernetes-based AI factory. This is a hands-on, high-impact role reporting directly to our CTO/CISO and working side-by-side with Technical Operations, Corp IT, Platform Engineering, and our scientific teams. It's not a compliance seat that exists to satisfy published controls - it's the chance to shape our security posture from the ground up, secure high-value client data, and build the team and tooling to do it. Two things make this role distinctive. First, Alembic is "Default to Open" by design: security here must respect that maximum information sharing is basic to how we operate, while still protecting customer data and the IP - patents and trade secrets - our applied-science work generates. Balancing those is the core intellectual challenge of the job. Second, we're an AI-first company that uses many kinds of AI across everything we do; deciding which AIs operate in which containers is one of the more interesting problems you'll own. What You'll Do
- Design and implement security controls across all environments - network segmentation and firewalling, IDS/IPS, and traffic analysis on our on-prem Kubernetes platform.
- Build and enforce host security: EDR, kernel telemetry, hardening, and baseline implementation across the fleet.
- Own identity and access - AuthN/AuthZ, RBAC, and service identity - grounded in OIDC, SAML, and mTLS.
- Stand up incident-detection pipelines (SIEM, metrics, endpoint telemetry) tuned to surface high-signal threats over noise, and lead incident response end to end: triage, containment, recovery, root-cause analysis, and forensics.
- Keep the focus on enablement over restriction - effective security, not compliance for its own sake - while balancing IP protection, customer-data protection, and broad internal information sharing.
- Partner with Legal and the CISO to obtain the compliance certifications we need and to answer customer questions about the security of our systems; hire and mentor as the security function grows.
- 8+ years in security engineering, infrastructure, or related roles.
- Strong Linux system security and networking (SSH certificates, directory-based authentication) and strong Kubernetes security (RBAC, tenant isolation, admission control).
- Real experience securing on-prem environments, not only public cloud.
- A proven track record leading real-world incidents, with familiarity with attacker techniques (lateral movement, persistence, exfiltration) and hands-on depth in EDR, IDS/IPS, and SIEM.
- Strong command of OIDC, SAML, mTLS, and cryptography-based storage security.
- Comfort writing code, automation, and tooling in Python or similar, plus configuration management via IaC (Terraform, Ansible).
- The judgment to distinguish high-signal threats from noise, make pragmatic tradeoffs in a fast-moving company, and communicate effectively with technical stakeholders.
- You want to shape a security posture from first principles rather than administer someone else's control framework - and you see "Default to Open" as a design constraint worth solving, not a threat to route around.
- You'd rather be in the terminal doing root-cause analysis and building detection pipelines than managing them from a slide deck, and you want to build the team around you as scope grows.
- Hard problems with real impact: You'll secure a one-of-a-kind on-prem AI factory and protect the high-value data behind multimillion-dollar decisions at Fortune 100 companies.
- Technical autonomy: Direct access to the CTO/CISO and decision-makers, ownership over the security architecture, and the freedom to solve problems your way.
- Cutting-edge environment: Secure our own NVIDIA DGX SuperPOD on Grace Blackwell - one of the fastest private supercomputers in the world - and take on genuinely novel work in AI, agent, and MCP security.
- Elite team: Join top engineers and scientists who thrive on hard problems, and build the security team from a front-row seat in the culture.
- Series B momentum, real ownership: Meaningful equity at a Series B company that's raised $145M, with proven product-market fit and Fortune 100 traction.
- You want a compliance-first role focused on satisfying published controls - this job is about effective security and enablement, and treats certifications as a byproduct, not the point.
- You need a fully built-out program, tooling, and process to step into, rather than the mandate to define them.
- You're uncomfortable with "Default to Open" - if your instinct is to lock everything down by default, the constant balance of IP protection, customer-data protection, and broad internal sharing will feel like friction rather than the interesting part.
- You prefer static over dynamic - priorities and scope shift as we grow. We have real paying customers and a playbook, and we still move at startup speed at Series B scale.
Vacancy posted 9 hours ago
Similar jobs that could be interesting for youBased on the Lead Security Engineer in San Francisco, CA vacancy
- ...advanced algorithms that significantly outperforms individual engineers. We combine language models with human ingenuity to push the... ...do the threats. That's why we're looking for a battle-tested Lead Security Engineer who's been in the trenches and can architect, harden...Suggested
- ...Lead Security Engineer (Series A Fintech) We are a $20M Series A startup We are seeking a Lead Security Engineer to serve as an autonomous unit within our engineering team. Reporting directly to the CTO , you will own the full spectrum of security concerns...Suggested
$11 per hour
...transformed how consumer companies transact, we aim to do the same for B2B companies. About the Role We are looking for a lead security engineer to stand up and own security at a company building category-defining products. Our problems span safe deployment of AI...Suggested$180k - $240k
...Lead Security Engineer Boston or Bay Area, hybrid preferred (2x/week in office) About Us Liberate builds AI agents to automate manual tasks for the $2.7T insurance industry. We started with voice — the hardest and most valuable channel in insurance — and are...SuggestedWork at officeShift work$239k - $263k
...The Opportunity Join the team securing the platform that helps millions of people move beyond... ...musculoskeletal pain. As Hinge Health’s engineering organization embraces AI-assisted... ...and MCP gateway integrations — we need a Lead Security Engineer who will build the security...SuggestedLocal area- Decisive Point is looking for a Corporate Security Engineer to enhance our Security team in San Francisco. This role involves leading key initiatives in security domains such as Endpoint Security and Identity Access Management. The ideal candidate will have a minimum of...
$220k - $300k
...recently raised our Series B and have grown 800% over the last 12 months. The Role We're hiring our first dedicated Lead Application Security Engineer to own the security of the Ivo platform end to end. You'll partner directly with our Head of IT & Security and embed...Contract workWork at officeVisa sponsorshipRelocation package- Salesforce, Inc. is seeking a Senior and Lead Product Security Engineer for our Secure AI team in San Francisco. In this role, you will perform high-quality security assessments of AI tooling, ensuring they meet Salesforce's security standards while driving business agility...
- Ivo AI, Inc. is seeking a Lead Application Security Engineer to enhance the security of our platform. The role involves hunting vulnerabilities, conducting code reviews, and integrating security practices into our development process. Applicants should have over 4 years...Work at office
$225k - $400k
Icehouseventures in San Francisco is seeking a skilled Lead Application Security Engineer to spearhead the security of its Ivo platform. In this hands-on role, you will partner closely with the Head of IT & Security and the engineering team to fortify the product. The...Contract work- Tools-For-Humanity is seeking a Mobile Security Engineer to ensure the security and integrity of mobile applications used globally. You will be responsible for designing and implementing security systems for mobile clients while addressing advanced threats. The ideal candidate...
- ...An innovative tech company in San Francisco is seeking a Lead Security Engineer to architect, harden, and defend its infrastructure. In this role, you'll lead security initiatives and embed security practices into the product lifecycle. Ideal candidates have over 8 years...
- A leading cybersecurity firm in San Francisco is looking for an experienced AI engineer to design and build intelligent autonomous security testing agents. The role requires 8+ years of engineering experience and deep expertise in AI/ML, particularly with large language...Remote job
$180k - $225k
A leading AI technology firm in San Francisco is seeking a hands-on security lead to enhance security measures for agentic workloads. The ideal candidate should have over 5 years of experience in security engineering, strong software skills in Python or Go, and expertise...- B Capital is seeking a Principal Engineer to lead their Endpoint Protection & Infrastructure Vulnerability Scanning team in San Francisco.... ...software delivery, and setting engineering standards in a critical security engineering capacity. The ideal candidate will have over 10...
$325k - $405k
...About the Team Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity... ...a robust security culture. About the Role As a Security Engineer, Application Security you will be responsible for identifying and...Work at officeRemote workRelocation package- ...horizontal AI automation layer used across IT, HR, Finance, Security, Legal, and Engineering. Our mission is to eliminate repetitive, manual work... ...that keep modern companies moving. We're backed by leading investors including Sequoia Capital, Redpoint Ventures, Meritech...
- ...defining the future of work. We partner with leading AI labs and enterprises to provide the... ...London offices. You’ll own application security at a company where the app layer is the... ...the safe path the easy path for 50+ engineers Threat models for new features and architecture...Remote workShift work
$234.4k - $385k
...The team's mission is to accelerate the secure evolution of agentic AI systems at OpenAI... ...AI. About the Role As a Security Engineer on the Agent Security Team , you will be... ...OpenAI's most advanced agentic systems, and lead efforts to enhance safety monitoring...$148k - $185k
## Senior Security Engineer, Enterprise SecurityApplylocations: San Franciscotime type: Full timeposted on: Posted Yesterdayjob requisition... ...comprehensive security framework. This role will focus heavily on leading the deployment of Zero Trust principles across the...Full timeFixed term contractWork at office3 days per week- B Capital in San Francisco is seeking a hands-on Senior Security Engineer to lead and scale security efforts in a rapidly growing team. You will collaborate across functions to safeguard customer data and maintain secure infrastructure. The ideal candidate has over 5 years...
- Jaide Health is seeking a Senior Security Engineer to serve as a trusted advisor, leading security operations and integrating security into the software development lifecycle. The ideal candidate will have over 5 years of experience with a focus on security tool onboarding...Remote jobFull timeFlexible hours
- EvenUp is looking for a Senior/Staff Security Engineer in San Francisco to lead and scale our security efforts. You will design and maintain secure infrastructure, ensuring that personal injury victims receive fair compensation through our AI-native document generation...Work at officeFlexible hours3 days per week
$196k - $220.5k
...games. We are looking for an experienced Senior Enterprise Security Engineer reporting to the Engineering Manager of Enterprise Security.... ...Enterprise Security role as a senior individual contributor or lead. 3+ years of experience programming in at least one general...Full timeWork at officeRelocationRelocation package2 days per week1 day per week$148k - $185k
...team Turo is searching for a highly motivated and versatile Sr. Security Engineer to spearhead our efforts in securing enterprise systems and... ...security framework. This role will focus heavily on leading the deployment of Zero Trust principles across the organization...Full timeWork at office3 days per week$347k
...About the Team Security is at the foundation of OpenAI's mission to ensure that artificial... ...OpenAI is seeking a Principal Security Engineer to join our Infrastructure Security (... ...adversaries and insider threats. Lead cross-functional programs to deploy security...- ...horizontal AI automation layer used across IT, HR, Finance, Security, Legal, and Engineering. Our mission is to eliminate repetitive, manual work... ...workflows that keep modern companies moving. We’re backed by leading investors including Sequoia Capital, Redpoint Ventures,...
$189k - $303k
Staff Security Engineer, Enterprise Security Architecture At the core of everything we do is our commitment to safety. Key Responsibilities Define and champion Aurora’s enterprise security architecture strategy, roadmap, and target‑state operating model across enterprise...- Abridge is looking for a Senior Enterprise Security Engineer to build and implement security solutions at the forefront of AI in healthcare. Join a passionate team dedicated to creating robust security architectures that protect critical infrastructures. With opportunities...
$200k - $300k
...Valued at US$6.2 billion and backed by world‑leading investors including Visa, Airtree,... ...About the team The Airwallex Information Security Team is a high calibre and highly proactive... ...app security, Corporate IT and broader engineering functions. What you’ll do As a Senior...Temporary workLocal areaWorldwide
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Lead Security Engineer. Be the first to apply!
Related searches
- lead product engineer San Francisco, CA
- lead system engineer San Francisco, CA
- lead engineer San Francisco, CA
- lead infrastructure engineer San Francisco, CA
- lead backend developer San Francisco, CA
- lead network engineer San Francisco, CA
- lead security engineer San Francisco, CA
- lead algorithm engineer San Francisco, CA
- lead operating engineer San Francisco, CA
- lead web developer San Francisco, CA

