Platform Security Engineer, Operating Systems
About The Position
Anthropic’s mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems. We're looking for an Operating Systems Security Engineer to harden and secure the OS layer of our infrastructure. You'll be responsible for designing and implementing OS-level security controls, from kernel hardening to runtime protection, ensuring our systems can withstand sophisticated attacks while maintaining the performance required for AI model training. This is a hands-on role where you'll work with cutting-edge hardware and implement novel security solutions for environments that don't exist anywhere else in the world. You'll need to balance extreme security requirements with the operational needs of researchers training models at unprecedented scale.
Requirements
- 5+ years of experience in operating systems security or kernel development
- Deep knowledge of Linux internals, including kernel subsystems and security frameworks (SELinux, AppArmor, seccomp, etc.)
- Experience with kernel hardening techniques and exploit mitigation
- Strong programming skills in C and systems programming languages
- Experience with eBPF for security monitoring and enforcement
- Understanding of virtualization and containerization security
- Track record of identifying and fixing OS-level security vulnerabilities
- Experience with security-focused Linux distributions
Nice To Haves
- Kernel development experience or contributions to Linux kernel
- Experience with real-time or embedded operating systems
- Knowledge of hardware security features and their OS integration
- Experience with secure boot technologies
- Experience with confidential computing and memory encryption technologies (SEV, TDX, SGX)
- Background in vulnerability research, exploit development, or fuzzing
- Experience with formal methods for OS verification
- Knowledge of hardware security features and their OS integration (TPM, HSM, secure enclaves)
Responsibilities
- Design and implement hardened OS configurations for AI workloads across diverse hardware platforms
- Minimize attack surfaces by removing as many unnecessary components as possible from kernelspace and userspace
- Develop kernel security policies using SELinux, AppArmor, and custom Linux Security Modules and runtime enforcement mechanisms
- Implement and maintain full-disk encryption solutions for diverse storage systems
- Build security infrastructure for AI systems, research environments, and production services
- Create OS-level attestation and integrity monitoring systems
- Apply security patches, develop patches for custom kernel modules, and kernel hardening configurations
- Design secure boot processes and trusted execution environments
- Work with container teams to ensure proper workload isolation at the kernel level
- Design privilege separation and mandatory access control policies
- Implement secure update mechanisms for OS components
- Build tooling for security configuration management and compliance verification
- Serve as a subject matter expert for OS security questions and designs
Benefits
- competitive compensation and benefits
- optional equity donation matching
- generous vacation and parental leave
- flexible working hours
- a lovely office space in which to collaborate with colleagues
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
