Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Lead Security Engineer

Alembic Limited

About Us

Alembic is the pioneering Causal AI platform. We help the world's largest enterprises move past correlation to prove what actually drives business outcomes - the question marketing and growth teams have never been able to answer with confidence. Fortune 100 companies including Nvidia, Delta Air Lines, and Mars use Alembic to make multimillion-dollar decisions on trusted, causal evidence.

We're backed by a $145M Series B from WndrCo (founded by Jeffrey Katzenberg), Jensen Huang, Joe Montana, Prysm Capital, and Accenture. Our models run on our own NVIDIA DGX SuperPOD built on Grace Blackwell infrastructure - one of the fastest private supercomputers in the world. (We've melted GPUs getting here.)

About the Role

We're looking for a lead-level Security Engineer and Architect to own system, network, and host security end-to-end for a rapidly growing on-prem, Kubernetes-based AI factory. This is a hands-on, high-impact role reporting directly to our CTO/CISO and working side-by-side with Technical Operations, Corp IT, Platform Engineering, and our scientific teams. It's not a compliance seat that exists to satisfy published controls - it's the chance to shape our security posture from the ground up, secure high-value client data, and build the team and tooling to do it.

Two things make this role distinctive. First, Alembic is "Default to Open" by design: security here must respect that maximum information sharing is basic to how we operate, while still protecting customer data and the IP - patents and trade secrets - our applied-science work generates. Balancing those is the core intellectual challenge of the job. Second, we're an AI-first company that uses many kinds of AI across everything we do; deciding which AIs operate in which containers is one of the more interesting problems you'll own.

What You'll Do
  • Design and implement security controls across all environments - network segmentation and firewalling, IDS/IPS, and traffic analysis on our on-prem Kubernetes platform.
  • Build and enforce host security: EDR, kernel telemetry, hardening, and baseline implementation across the fleet.
  • Own identity and access - AuthN/AuthZ, RBAC, and service identity - grounded in OIDC, SAML, and mTLS.
  • Stand up incident-detection pipelines (SIEM, metrics, endpoint telemetry) tuned to surface high-signal threats over noise, and lead incident response end to end: triage, containment, recovery, root-cause analysis, and forensics.
  • Keep the focus on enablement over restriction - effective security, not compliance for its own sake - while balancing IP protection, customer-data protection, and broad internal information sharing.
  • Partner with Legal and the CISO to obtain the compliance certifications we need and to answer customer questions about the security of our systems; hire and mentor as the security function grows.
What Will Help You Succeed
  • 8+ years in security engineering, infrastructure, or related roles.
  • Strong Linux system security and networking (SSH certificates, directory-based authentication) and strong Kubernetes security (RBAC, tenant isolation, admission control).
  • Real experience securing on-prem environments, not only public cloud.
  • A proven track record leading real-world incidents, with familiarity with attacker techniques (lateral movement, persistence, exfiltration) and hands-on depth in EDR, IDS/IPS, and SIEM.
  • Strong command of OIDC, SAML, mTLS, and cryptography-based storage security.
  • Comfort writing code, automation, and tooling in Python or similar, plus configuration management via IaC (Terraform, Ansible).
  • The judgment to distinguish high-signal threats from noise, make pragmatic tradeoffs in a fast-moving company, and communicate effectively with technical stakeholders.
Nice to have: high-performance or distributed-compute experience (HPC, GPU clusters); identity-aware proxies or zero-trust architectures; offensive security (red teaming, exploit development); secure application development and secure-code training; responsible-disclosure/bug-bounty programs; AI controls, MCP security, agent security, and AI governance; and a background in corporate IT security.

The role is right for you if:
  • You want to shape a security posture from first principles rather than administer someone else's control framework - and you see "Default to Open" as a design constraint worth solving, not a threat to route around.
  • You'd rather be in the terminal doing root-cause analysis and building detection pipelines than managing them from a slide deck, and you want to build the team around you as scope grows.
Why You Might Be Excited About Alembic
  • Hard problems with real impact: You'll secure a one-of-a-kind on-prem AI factory and protect the high-value data behind multimillion-dollar decisions at Fortune 100 companies.
  • Technical autonomy: Direct access to the CTO/CISO and decision-makers, ownership over the security architecture, and the freedom to solve problems your way.
  • Cutting-edge environment: Secure our own NVIDIA DGX SuperPOD on Grace Blackwell - one of the fastest private supercomputers in the world - and take on genuinely novel work in AI, agent, and MCP security.
  • Elite team: Join top engineers and scientists who thrive on hard problems, and build the security team from a front-row seat in the culture.
  • Series B momentum, real ownership: Meaningful equity at a Series B company that's raised $145M, with proven product-market fit and Fortune 100 traction.
Why You Might Not Be Excited
  • You want a compliance-first role focused on satisfying published controls - this job is about effective security and enablement, and treats certifications as a byproduct, not the point.
  • You need a fully built-out program, tooling, and process to step into, rather than the mandate to define them.
  • You're uncomfortable with "Default to Open" - if your instinct is to lock everything down by default, the constant balance of IP protection, customer-data protection, and broad internal sharing will feel like friction rather than the interesting part.
  • You prefer static over dynamic - priorities and scope shift as we grow. We have real paying customers and a playbook, and we still move at startup speed at Series B scale.
Vacancy posted 9 hours ago
Similar jobs that could be interesting for youBased on the Lead Security Engineer in San Francisco, CA vacancy
  •  ...advanced algorithms that significantly outperforms individual engineers. We combine language models with human ingenuity to push the...  ...do the threats. That's why we're looking for a battle-tested Lead Security Engineer who's been in the trenches and can architect, harden... 
    Suggested

    CodeRabbit

    San Francisco, CA
    9 hours ago
  •  ...Lead Security Engineer (Series A Fintech) We are a $20M Series A startup We are seeking a Lead Security Engineer to serve as an autonomous unit within our engineering team. Reporting directly to the CTO , you will own the full spectrum of security concerns... 
    Suggested

    Brahma Consulting Group

    San Francisco, CA
    3 days ago
  • $11 per hour

     ...transformed how consumer companies transact, we aim to do the same for B2B companies. About the Role We are looking for a lead security engineer to stand up and own security at a company building category-defining products. Our problems span safe deployment of AI... 
    Suggested

    Nuvo

    San Francisco, CA
    2 days ago
  • $180k - $240k

     ...Lead Security Engineer Boston or Bay Area, hybrid preferred (2x/week in office) About Us Liberate builds AI agents to automate manual tasks for the $2.7T insurance industry. We started with voice — the hardest and most valuable channel in insurance — and are... 
    Suggested
    Work at office
    Shift work

    Liberate

    San Francisco, CA
    4 days ago
  • $239k - $263k

     ...The Opportunity Join the team securing the platform that helps millions of people move beyond...  ...musculoskeletal pain. As Hinge Health’s engineering organization embraces AI-assisted...  ...and MCP gateway integrations — we need a Lead Security Engineer who will build the security... 
    Suggested
    Local area

    Dormont Manufacturing Company

    San Francisco, CA
    3 days ago
  • Decisive Point is looking for a Corporate Security Engineer to enhance our Security team in San Francisco. This role involves leading key initiatives in security domains such as Endpoint Security and Identity Access Management. The ideal candidate will have a minimum of... 

    Decisive Point

    San Francisco, CA
    1 day ago
  • $220k - $300k

     ...recently raised our Series B and have grown 800% over the last 12 months. The Role We're hiring our first dedicated Lead Application Security Engineer to own the security of the Ivo platform end to end. You'll partner directly with our Head of IT & Security and embed... 
    Contract work
    Work at office
    Visa sponsorship
    Relocation package

    IVO Inc

    San Francisco, CA
    4 days ago
  • Salesforce, Inc. is seeking a Senior and Lead Product Security Engineer for our Secure AI team in San Francisco. In this role, you will perform high-quality security assessments of AI tooling, ensuring they meet Salesforce's security standards while driving business agility... 

    Salesforce

    San Francisco, CA
    3 days ago
  • Ivo AI, Inc. is seeking a Lead Application Security Engineer to enhance the security of our platform. The role involves hunting vulnerabilities, conducting code reviews, and integrating security practices into our development process. Applicants should have over 4 years... 
    Work at office

    Ivo AI, Inc.

    San Francisco, CA
    3 days ago
  • $225k - $400k

    Icehouseventures in San Francisco is seeking a skilled Lead Application Security Engineer to spearhead the security of its Ivo platform. In this hands-on role, you will partner closely with the Head of IT & Security and the engineering team to fortify the product. The... 
    Contract work

    Icehouseventures

    San Francisco, CA
    3 days ago
  • Tools-For-Humanity is seeking a Mobile Security Engineer to ensure the security and integrity of mobile applications used globally. You will be responsible for designing and implementing security systems for mobile clients while addressing advanced threats. The ideal candidate... 

    Tools-For-Humanity

    San Francisco, CA
    3 days ago
  •  ...An innovative tech company in San Francisco is seeking a Lead Security Engineer to architect, harden, and defend its infrastructure. In this role, you'll lead security initiatives and embed security practices into the product lifecycle. Ideal candidates have over 8 years... 

    CodeRabbit

    San Francisco, CA
    15 hours ago
  • A leading cybersecurity firm in San Francisco is looking for an experienced AI engineer to design and build intelligent autonomous security testing agents. The role requires 8+ years of engineering experience and deep expertise in AI/ML, particularly with large language... 
    Remote job

    Hyperproof

    San Francisco, CA
    2 days ago
  • $180k - $225k

    A leading AI technology firm in San Francisco is seeking a hands-on security lead to enhance security measures for agentic workloads. The ideal candidate should have over 5 years of experience in security engineering, strong software skills in Python or Go, and expertise... 

    LangChain

    San Francisco, CA
    2 days ago
  • B Capital is seeking a Principal Engineer to lead their Endpoint Protection & Infrastructure Vulnerability Scanning team in San Francisco....  ...software delivery, and setting engineering standards in a critical security engineering capacity. The ideal candidate will have over 10... 

    B Capital

    San Francisco, CA
    1 day ago
  • $325k - $405k

     ...About the Team Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity...  ...a robust security culture. About the Role As a Security Engineer, Application Security you will be responsible for identifying and... 
    Work at office
    Remote work
    Relocation package

    Dormont Manufacturing Company

    San Francisco, CA
    3 days ago
  •  ...horizontal AI automation layer used across IT, HR, Finance, Security, Legal, and Engineering. Our mission is to eliminate repetitive, manual work...  ...that keep modern companies moving. We're backed by leading investors including Sequoia Capital, Redpoint Ventures, Meritech... 

    Serval

    San Francisco, CA
    3 days ago
  •  ...defining the future of work. We partner with leading AI labs and enterprises to provide the...  ...London offices. You’ll own application security at a company where the app layer is the...  ...the safe path the easy path for 50+ engineers Threat models for new features and architecture... 
    Remote work
    Shift work

    Mercor Inc

    San Francisco, CA
    4 days ago
  • $234.4k - $385k

     ...The team's mission is to accelerate the secure evolution of agentic AI systems at OpenAI...  ...AI. About the Role As a Security Engineer on the Agent Security Team , you will be...  ...OpenAI's most advanced agentic systems, and lead efforts to enhance safety monitoring... 

    OpenAI

    San Francisco, CA
    1 day ago
  • $148k - $185k

    ## Senior Security Engineer, Enterprise SecurityApplylocations: San Franciscotime type: Full timeposted on: Posted Yesterdayjob requisition...  ...comprehensive security framework. This role will focus heavily on leading the deployment of Zero Trust principles across the... 
    Full time
    Fixed term contract
    Work at office
    3 days per week

    Turo Inc

    San Francisco, CA
    4 days ago
  • B Capital in San Francisco is seeking a hands-on Senior Security Engineer to lead and scale security efforts in a rapidly growing team. You will collaborate across functions to safeguard customer data and maintain secure infrastructure. The ideal candidate has over 5 years... 

    B Capital

    San Francisco, CA
    15 hours ago
  • Jaide Health is seeking a Senior Security Engineer to serve as a trusted advisor, leading security operations and integrating security into the software development lifecycle. The ideal candidate will have over 5 years of experience with a focus on security tool onboarding... 
    Remote job
    Full time
    Flexible hours

    Jaide Health

    San Francisco, CA
    4 days ago
  • EvenUp is looking for a Senior/Staff Security Engineer in San Francisco to lead and scale our security efforts. You will design and maintain secure infrastructure, ensuring that personal injury victims receive fair compensation through our AI-native document generation... 
    Work at office
    Flexible hours
    3 days per week

    EvenUp Inc.

    San Francisco, CA
    6 hours ago
  • $196k - $220.5k

     ...games. We are looking for an experienced Senior Enterprise Security Engineer reporting to the Engineering Manager of Enterprise Security....  ...Enterprise Security role as a senior individual contributor or lead. 3+ years of experience programming in at least one general... 
    Full time
    Work at office
    Relocation
    Relocation package
    2 days per week
    1 day per week

    United States Digital Space LLC

    San Francisco, CA
    15 hours ago
  • $148k - $185k

     ...team Turo is searching for a highly motivated and versatile Sr. Security Engineer to spearhead our efforts in securing enterprise systems and...  ...security framework. This role will focus heavily on leading the deployment of Zero Trust principles across the organization... 
    Full time
    Work at office
    3 days per week

    Turo Inc.

    San Francisco, CA
    4 days ago
  • $347k

     ...About the Team Security is at the foundation of OpenAI's mission to ensure that artificial...  ...OpenAI is seeking a Principal Security Engineer to join our Infrastructure Security (...  ...adversaries and insider threats. Lead cross-functional programs to deploy security... 

    OpenAI

    San Francisco, CA
    3 days ago
  •  ...horizontal AI automation layer used across IT, HR, Finance, Security, Legal, and Engineering. Our mission is to eliminate repetitive, manual work...  ...workflows that keep modern companies moving. We’re backed by leading investors including Sequoia Capital, Redpoint Ventures,... 

    Serval

    San Francisco, CA
    1 day ago
  • $189k - $303k

    Staff Security Engineer, Enterprise Security Architecture At the core of everything we do is our commitment to safety. Key Responsibilities Define and champion Aurora’s enterprise security architecture strategy, roadmap, and target‑state operating model across enterprise... 

    NextGenEnergyJobs

    San Francisco, CA
    4 days ago
  • Abridge is looking for a Senior Enterprise Security Engineer to build and implement security solutions at the forefront of AI in healthcare. Join a passionate team dedicated to creating robust security architectures that protect critical infrastructures. With opportunities... 

    Abridge

    San Francisco, CA
    15 hours ago
  • $200k - $300k

     ...Valued at US$6.2 billion and backed by world‑leading investors including Visa, Airtree,...  ...About the team The Airwallex Information Security Team is a high calibre and highly proactive...  ...app security, Corporate IT and broader engineering functions. What you’ll do As a Senior... 
    Temporary work
    Local area
    Worldwide

    Dormont Manufacturing Company

    San Francisco, CA
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Lead Security Engineer. Be the first to apply!