Job details

Windows Security Engineer

Get a free resume review

About the Team

OpenAI’s Security organization supports the mission of deploying AGI for the benefit of all by ensuring the confidentiality, availability, and integrity of OpenAI’s technology, people, and products. The Enterprise Security team seeks to ensure our diverse team of researchers, engineers, and staff are supported with a highly secure and functional corporate environment. As an Enterprise Security Engineer, you will work with the greater Security Organization to Secure OpenAI against threats to our Enterprise environment.

About the Role

As a Windows Security Engineer, you will be responsible for implementing and maintaining OpenAI’s Windows security infrastructure, instrumentation and telemetry as a first-tier platform. We are looking for people who will work closely with our Security and IT teams to design, plan and integrate a world-class Windows platform into our existing security stack.

This role is either fully remote or based in San Francisco, CA. We offer relocation assistance to new employees.

In this role, you will:

Lead the strategy and implementation of the security stack for Windows across our fleet, including developer systems, Azure Virtual Desktops, servers, and specialized employee systems.
Lead threat-modeling initiatives to continuously improve the security of the Windows platform across OpenAI, including cloud-native, hybrid, and on-premises environments..
Closely collaborate with OpenAI’s Windows-facing product teams to ensure security best practices are baked into both developer systems and the software they produce.
Implement the strongest controls available in the Windows ecosystem, including passwordless authentication, attack surface reduction (e.g., application allowlisting), code integrity, and virtualization-based security.
Influence security for our overall authentication and authorization strategy by implementing Azure conditional access policies, Intune policies, and improving the security of native Azure services.
Ensure the continuous health and sufficiency of security telemetry from and alert coverage for our Windows fleet.
Improve employee experience through operating system, process, and performance improvements.
Research adversary tradecraft and implement Windows security detections to protect OpenAI, its users, and its technology.

You might thrive in this role if you have:

5+ years experience and expert knowledge with Windows internals, configuration management, security hardening, and advanced security features.
Expert-level security experience in protecting and managing Microsoft Active Directory and Azure Active Directory, including Conditional Access Policies.
Hands-on experience with large-scale Windows fleet administration including device provisioning, management, and maintenance.
Credential protection methods (Credential Guard, LSASS isolation, virtualization-based security)
Proficiency with deploying and managing endpoint baselines, security solutions (e.g. management frameworks, EDR tools), and event log collection (e.g., Windows Event Forwarding or similar).
Experience managing configuration as code.
Experience with public cloud service providers (Microsoft Azure preferred).
Proficiency with Powershell and scripting languages (e.g. Bash, Python, or similar).
Deep knowledge of modern adversary tactics, techniques, and procedures, and experience with threat modeling.
The ability to empathize and collaborate with colleagues, independently manage and run projects, and prioritize efforts for risk reduction.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

We are an equal opportunity employer and do not discriminate on the basis of race, religion, national origin, gender, sexual orientation, age, veteran status, disability or any other legally protected status.

OpenAI Affirmative Action and Equal Employment Opportunity Policy Statement

For US Based Candidates: Pursuant to the San Francisco Fair Chance Ordinance, we will consider qualified applicants with arrest and conviction records.

We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link.

OpenAI Global Applicant Privacy Policy

At OpenAI, we believe artificial intelligence has the potential to help people solve immense global challenges, and we want the upside of AI to be widely shared. Join us in shaping the future of technology.

OpenAI Glassdoor Company Review

4.2

OpenAI DE&I Review

No rating

CEO of OpenAI

Sam Altman

Approve of CEO

Average salary estimate

$150000 / YEARLY (est.)

min

max

$130000K

$170000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Windows Security Engineer, OpenAI

Join OpenAI as a Windows Security Engineer and be part of a team dedicated to ensuring the integrity, availability, and confidentiality of our cutting-edge technology and solutions. In this role, based in San Francisco or offered remotely, you will play a crucial part in designing and implementing secure Windows infrastructures that support our diverse teams of researchers and engineers. Your work will involve leading the security stack strategy for our Windows fleet, which includes everything from developer systems to Azure Virtual Desktops. You’ll collaborate closely with other teams to make sure security best practices are integrated into our development processes. Key responsibilities include conducting threat-modeling initiatives, implementing advanced security measures like passwordless authentication, and influencing our overall security strategy with Azure conditional access and Intune policies. We are looking for someone with at least 5 years of experience in Windows security, who is passionate about technology and eager to improve both employee experience and security posture. Bring your expertise in protecting and managing Microsoft Active Directory, large-scale Windows administration, and credential protection methods to take our security efforts to the next level. At OpenAI, we value diversity and are committed to ensuring that AI benefits all of humanity. If you’re ready to make a meaningful impact, we encourage you to apply and become part of our mission to shape the future of AI.

Frequently Asked Questions (FAQs) for Windows Security Engineer Role at OpenAI

What are the key responsibilities of a Windows Security Engineer at OpenAI?

As a Windows Security Engineer at OpenAI, your primary role will be to implement and maintain a robust Windows security infrastructure. You'll lead the strategy for our security stack, oversee threat-modeling initiatives to bolster our security protocols, and collaborate with other teams to integrate best practices into both systems and software development. Additionally, you will continuously improve security telemetry and manage access policies to protect the integrity of our systems.