OpenAI· Security· San Francisco, New York City, Seattle, Washington, DC, and Remote - US
Offensive Security Engineer, Agent Products
Comp$277.6K – $490K
Classified Tasks (16)
Automate 0%Augment 75%Human-Only 25%
Augment (12)
AI assists, human decides
Conduct deep penetration tests of agent-powered products across web applications, APIs, cloud services, identity and authorization flows, CI/CD systems, and model-integrated product surfaces.
technical
Continuously test agent-powered products such as Codex and Operator for security weaknesses.
operational
Assess complex systems end-to-end to discover security issues across applications, infrastructure, tools, and models.
analytical
Hunt for exploitable vulnerabilities arising from interactions between applications, infrastructure, tools, and models.
technical
Perform code reviews to identify security defects and risky implementation patterns.
technical
Perform architecture reviews to identify systemic security weaknesses and design flaws.
technical
Validate exploitability and assess impact for identified vulnerabilities.
technical
Produce clear, actionable findings including reproduction steps, exploitability analysis, impact assessment, and practical remediation guidance.
communication
Build tools, test harnesses, and automation to scale penetration testing across rapidly evolving product surfaces.
technical
Automate offensive security workflows using advanced automation and OpenAI technologies.
technical
Develop reusable testing approaches and methodologies for agent-powered systems.
analytical
Share attacker-informed insights with security and engineering teams to improve threat models, mitigations, and defensive coverage.
communication
Human-Only (4)
Requires human judgment
Execute hands-on exploitation to validate vulnerability exploitability and confirm real-world risk.
technical
Partner with engineering teams to drive fixes, validate remediation, and ensure durable vulnerability resolution.
leadership
Improve secure design patterns across agentic products by collaborating with product and engineering teams.
leadership
Drive resolution and remediation of identified vulnerabilities through direct engagement and follow-up.
leadership
Job description
Offensive Security Engineer, Agent Products | OpenAI Careers ## Offensive Security Engineer, Agent Products Security - San Francisco, New York City, Seattle, Washington, DC, and Remote - US Apply now(opens in a new window) ## **About the Team** Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI’s technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture. ## **About the Role** We’re seeking an exceptional Principal-level Offensive Security Engineer focused on deep, hands-on penetration testing of OpenAI’s agent-powered products, infrastructure, and model-integrated application surfaces. You’ll assess complex systems end to end, identify realistic vulnerabilities, validate exploitability and impact, and partner closely with engineering teams to drive durable fixes. This role will be primarily focused on continuously testing our agent-powered products like Codex and Operator. These systems are uniquely valuable targets because they’re rapidly evolving, can perform sensitive actions on behalf of users, and have large, diverse attack surfaces. You will play a crucial role in securing our agents by finding vulnerabilities that emerge from the interactions between the applications, infrastructure, tools, and models that power them. You’ll have the chance to not only find vulnerabilities, but actively drive their resolution, build reusable testing approaches, automate offensive security workflows with cutting-edge technologies, and use your attacker perspective to improve the security of OpenAI’s products. ## **In this role you will:** * Conduct deep penetration tests of OpenAI’s agent-powered products, including web applications, APIs, cloud services, identity and authorization flows, CI/CD systems, and model-integrated product surfaces. * Continuously hunt for exploitable vulnerabilities in the interactions between the applications, infrastructure, tools, and models that power our agentic products. * Perform code review, architecture review, and hands-on exploitation to validate risk and identify subtle or novel failure modes. * Produce clear, actionable findings with reproduction steps, exploitability analysis, impact assessment, and practical remediation guidance. * Partner directly with engineering teams to drive fixes, validate remediation, and improve secure design patterns across agentic products. * Build tools, test harnesses, and automation to scale penetration testing across rapidly evolving product surfaces. * Leverage advanced automation and OpenAI technologies to optimize your offensive security work. * Share attacker-informed insights with security and engineering teams to improve threat models, mitigations, and defensive coverage. ## **You might thrive in this role if you have:** * 7+ years of hands-on penetration testing, product security assessment, application security, cloud security assessment, or equivalent offensive security experience. * Deep expertise finding, exploiting, documenting, and helping remediate vulnerabilities in complex production systems. * Experience performing offensive security assessments of modern technology products, including web applications, APIs, cloud infrastructure, identity systems, CI/CD pipelines, and distributed services. * Experience designing, developing, or assessing the security of AI-powered systems. * Experience finding, exploiting, and mitigating common vulnerabilities in AI systems, including prompt injection, confused deputies, unsafe tool use, and dynamically generated UI components. * Exceptional skill in code review to identi