Lead Security Engineer

About Anyscale:

At Anyscale, we're on a mission to democratize distributed computing and make it accessible to software developers of all skill levels. We’re commercializing Ray, a popular open-source project that's creating an ecosystem of libraries for scalable machine learning. Companies like OpenAI, Uber, Spotify, Instacart, Cruise, and many more, have Ray in their tech stacks to accelerate the progress of AI applications out into the real world.

With Anyscale, we’re building the best place to run Ray, so that any developer or data scientist can scale an ML application from their laptop to the cluster without needing to be a distributed systems expert.

Proud to be backed by Andreessen Horowitz, NEA, and Addition with $250+ million raised to date.

About the role:

As the Lead Security Engineer on our team, you'll be in charge of architecting and building secure products that will be used to run mission-critical applications as well as in charge of establishing and implementing security best practices and policies throughout the company.

Our goal is to enable many more developers to take advantage of distributed computing and machine learning to tackle harder problems without needing to think about systems and infrastructure and instead to just focus on the problems that they are solving. You'll play an integral role in making this happen.

As part of this role, you will:

• Partner with product and engineering teams to architect secure products, providing security guidance, requirements, and guardrails throughout the development process

• Own product and infrastructure security, including secure architecture design, cloud provider configuration, threat modeling, and incident response planning

• Work closely with engineering teams to integrate security into the development lifecycle and provide the context needed to avoid introducing security risks

• Oversee corporate security fundamentals, including endpoint protection, access management, and tool security

• Support compliance certification efforts from a security and risk perspective (e.g., SOC 2, HIPAA, ISO 27001)

We'd love to hear from you if you have:

• Strong experience with product security and building secure applications for enterprise environments

• Excellent communication skills and can effectively share security knowledge with engineering teams through writing and speaking

• Deep hands-on experience with cloud infrastructure security (AWS, GCP, and/or Azure)

• Software development background with the ability to both build and assess secure systems

• Experience managing corporate security programs (device management, SaaS security, access controls)

• Led or contributed to compliance certifications (SOC 2, HIPAA, ISO 27001, FedRAMP, etc.)

Anyscale Inc. is an Equal Opportunity Employer. Candidates are evaluated without regard to age, race, color, religion, sex, disability, national origin, sexual orientation, veteran status, or any other characteristic protected by federal or state law. 

Anyscale Inc. is an E-Verify company and you may review the Notice of E-Verify Participation and the Right to Work posters in English and Spanish