← All crypto jobs
OpenAI

Security Engineer, Host Assurance

San FranciscoRemoteUSD 293k–385kvia BlockJobsPosted 4/1/2026
securityfull-time
Apply for this role ↗Browse all jobs

About the role

About the Team Security is foundational to OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. The Security organization protects OpenAI’s technology, people, and products by building and operating deeply technical systems that must work reliably at massive scale. Our work underpins OpenAI’s commitments around safety, privacy, and security across research, products, and emerging platforms. The Host Assurance team exists to make bare metal a dependable, scalable foundation for OpenAI: secure by default, verifiable in practice, and resilient across providers and operating models. We operate at the trust boundary between physical hardware and cloud-scale orchestration, ensuring that hosts are eligible to safely run workloads with predictable security properties and auditability. About the Role OpenAI is seeking a Security Engineer, Host Assurance to help build the trust foundations for bare-metal platforms across OpenAI’s global infrastructure. This is a deeply hands-on engineering role for a builder who can design, implement, and operate the core security infrastructure that establishes trust in hardware platforms before they are eligible to run workloads. Success in this role requires strong technical judgment, the ability to work comfortably at low levels of the stack, and a practical mindset for building systems that are secure, reliable, and usable in fast-moving production environments. The systems you build will sit on the critical path of OpenAI’s frontier infrastructure investments and will directly shape how large amounts of compute are brought online - securely, responsibly, and at global scale - underpinning long-lived commitments around privacy, security, and reliability. You will partner closely with infrastructure, research, and confidential computing initiatives—including novel hardware platforms and emerging deployment models– to make the secure path the easiest path. This role is well suited for engineers who enjoy working across trust services, operating systems, hardware and firmware validation, and infrastructure security, and who are excited by ambiguous, high-impact problems at the boundary of hardware and large-scale systems. In this role, you will: • Design, build, and operate components of the Host Assurance platform that establish trust in bare-metal hosts before they are eligible for production use. • Help ensure hosts are verifiably trustworthy from delivery and installation through secure bootstrap and readiness to join orchestration systems. • Build and improve systems such as machine identity, certificate issuance and enrollment, HSM-backed or key-management-backed trust services, host attestation, measurement, and baseline verification tooling. • Validate delivered hardware and firmware against vendor claims and continuously detect and manage drift over time. • Eliminate insecure bootstrap patterns while preserving deployment throughput and operational reliability. Partner with provisioning, fleet, and orchestration teams to deliver paved paths where the secure approach is the easiest approach. • Contribute code, reviews, operational improvements, and design guidance for foundational trust services that must be dependable at scale. • Help define observable, testable security properties for host platforms and improve the telemetry and validation needed to enforce them in practice. • Participate in incident response, debugging, and post-incident improvements for security-critical infrastructure. • Work across different deployment models and provider boundaries while maintaining a consistent bar for host trust outcomes. You might thrive in this role if you: • Have strong software engineering experience building and operating reliable production systems at scale. • Have deep expertise in at least one relevant domain such as PKI, HSMs, machine identity, applied cryptography, secure boot, firmware or hardware security, host attestation, or low-level platform security. • Are comfortable working across systems boundaries, from services and APIs down to host, boot, firmware, or hardware-adjacent trust mechanisms. • Can write production quality code and reason clearly about failure modes, operational safety, and long-term maintainability. • Have experience replacing fragile or manual security mechanisms with durable, paved-path infrastructure. • Balance rigor with pragmatism, and care about making strong security controls deployable in real-world environments. • Are self-directed, low ego, and willing to work across disciplines to solve the most important problems. • Enjoy building in ambiguous spaces where the architecture is still emerging, stakes are at all time high, and the future is being built. Workplace & Location • This role is preferably based in San Francisco, CA or Seattle, WA. We use a hybrid work model of 3 days in the office per week and offer relocation assistance to new employees. About OpenAI OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.  We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. For additional information, please see OpenAI’s Affirmative Action and Equal Employment Opportunity Policy Statement https://cdn.openai.com/policies/eeo-policy-statement.pdf. Background checks for applicants will be administered in accordance with applicable law, and qualified applicants with arrest or conviction records will be considered for employment consistent with those laws, including the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act, for US-based candidates. For unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non-public information. In addition, job duties require access to secure and protected information technology systems and related data security obligations. To notify OpenAI that you believe this job posting is non-compliant, please submit a report through this form https://form.asana.com/?d=57018692298241&k=5MqR40fZd7jlxVUh5J-UeA. No response will be provided to inquiries unrelated to job posting compliance. We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link https://form.asana.com/?k=bQ7w9h3iexRlicUdWRiwvg&d=57018692298241. OpenAI Global Applicant Privacy Policy https://cdn.openai.com/policies/global-employee-and-contractor-privacy-policy.pdf At OpenAI, we believe artificial intelligence has the potential to help people solve immense global challenges, and we want the upside of AI to be widely shared. Join us in shaping the future of technology.

Skills & technologies

OpenAI is hiring for Security Engineer, Host Assurance with a focus on security, full-time. Highlight these on your profile to rank higher for this role.

How to apply

You can apply to this Security Engineer, Host Assurance role at OpenAI directly from BlockJobs. Sign in with LinkedIn and we’ll match you against every open crypto & web3 role — then auto-apply to all your matches in one click for a flat $10. You can also apply on the original listing.

Frequently asked questions

Is the Security Engineer, Host Assurance role at OpenAI remote?

Yes — this Security Engineer, Host Assurance position is remote-friendly (San Francisco).

What skills does the Security Engineer, Host Assurance role need?

Key skills for this role include security, full-time.

How do I apply for Security Engineer, Host Assurance at OpenAI?

Open the role on BlockJobs and apply directly, or apply via the original listing. Sign in with LinkedIn to auto-apply to every matching crypto role in one click.

What's the salary for Security Engineer, Host Assurance?

The listed compensation is USD 293k–385k per year.

Related crypto jobs

Staff Security Detection EngineerDatabricks · United StatesStaff Security Assurance EngineerDatabricks · RemoteStaff Enterprise Security EngineerDatabricks · RemoteSr. Staff Security Assurance EngineerDatabricks · Mountain View, California; San Francisco, CaliforniaSr. Staff Product Security EngineerDatabricks · United StatesSr Security Engineer, Incident ResponseDatabricks · RemoteSupervisor, SecurityxAI · Austin, TXSite Reliability Engineer - CybersecurityxAI · Palo Alto, CA
Browse all crypto & web3 jobs →

This listing was sourced from BlockJobs and ranked for crypto candidates. Apply via the original source.