About the company
OpenAIās mission is to ensure that general-purpose artificial intelligence benefits all of humanity. Our Communications team is composed of PR/Media Relations, Events, Design, and other external-facing functions. The teamās ethos is to support OpenAI's mission and goals by clearly and authentically explaining our technology, values, and approach to safely building powerful AI. The Events team is a dynamic group dedicated to crafting extraordinary experiences that encompass our company's values and mission. Our team is driven by a passion for bringing people together to connect in meaningful ways.
Job Summary
In this role, you will:
šDevelop and implement security measures to protect our company's information assets against unauthorized access, disclosure, or misuse. šMonitor internal and external systems for security threats and respond to alerts. šContribute to and enforce our company's IT and Security policies and procedures. šWork closely with our IT department to harden our infrastructure using best practices in AzureAD, GSuite, Github, and other SaaS tooling. šAdvise our employees on best practices for maintaining the security of their endpoints, and office AV and network infrastructure. šDevise novel sharing controls and associated monitoring to protect company data, including intelligent groups management, Data Loss Prevention (DLP) and other security controls as appropriate. šEmploy forward-thinking models like āsecure by defaultā and āzero trustā to create sustainably secure environments for knowledge workers and developers. šIdentify and remediate vulnerabilities in our internal systems, adhering to best practices for data security. šUse our own AI-driven models to develop systems for improved security detection and response, data classification, and other security-related tasks. šEducate employees on the importance of data security, and advise them on best practices for maintaining a secure environment. šContribute to OpenAI's endpoint and cloud security roadmaps by staying up to date with the latest security threats, and making recommendations for improving our security posture.
You might thrive in this role if you have:
šExperience in protecting and managing macOS fleets. šExperience deploying and managing endpoint security solutions (e.g. management frameworks, EDR tools). šExperience with public cloud service providers (e.g. Amazon AWS, Microsoft Azure). šExperience with identity and access management frameworks and protocols, including SAML, OAUTH, and SCIM. šExperience with e-mail security protocols (e.g. SPF, DKIM, DMARC) and controls. šIntermediate or better proficiency with a scripting language (e.g. Python, Bash, or similar). šKnowledge of modern adversary tactics, techniques, and procedures. šAbility to empathize and collaborate with colleagues, independently manage and run projects, and prioritize efforts for risk reduction.
