Security Product Lead – Threat Intelligence & Insider Risk

Join SoFi as a Security Product Lead specializing in Threat Intelligence and Insider Risk. In this pivotal role, you will spearhead initiatives that enhance our security posture and protect our assets from internal and external threats. You will collaborate with cross-functional teams to develop and implement innovative security solutions, ensuring the safet…

The Cyber Threat Intelligence Team Lead is crucial in establishing and guiding a premier Cyber Intelligence program for a key client at Control Risks. This role entails crafting strategies, enhancing capabilities, and leading a dedicated team of security professionals to proactively identify, assess, and respond to cyber threats.This position encompasses providing technical guidance and administrative oversight on all cybersecurity initiatives, ensuring the safeguarding of the client's systems, networks, and sensitive data. The Team Lead collaborates closely with technology and business stakeholders to integrate security considerations into all planning, development, and operational processes.Collaborate with client stakeholders to build, manage, and expand a Cyber Threat Intelligence Team from inception.Take charge of developing Standard Operating Procedures for threat intelligence operations, tailored to specific client activities and stakeholder needs, including tooling, reporting structures, and incident management outside regular hours.Oversee the management of the most severe and critical cybersecurity incidents, providing support to incident responders with timely reporting, updates, and investigations to facilitate effective incident response and crisis management.Mentor and train threat intelligence analysts, engineers, and threat hunters to enhance their skills and capabilities.Establish operational workflows, escalation protocols, and comprehensive playbooks.Supervise the triage of cybersecurity events, ensuring swift identification, investigation, and remediation.Coordinate incident response activities across IT, Legal, Risk, and other relevant stakeholders.Develop metrics, KPIs, and reporting frameworks to evaluate the effectiveness of the Security Operations Center (SOC).Lead proactive threat hunting initiatives to uncover potential compromises and undetected malicious activities.Integrate threat intelligence into SOC workflows and leverage insights to shape response and prevention strategies.Assess and optimize the client's technology stack, including SIEM, SOAR, EDR, and threat intelligence platforms.Drive ongoing enhancements in detection rules, automation, and response capabilities.Propose emerging tools and processes to elevate operational maturity.Conduct regular check-ins, offer coaching and feedback, manage performance reviews and improvement plans, and support career development for team members.Act as the primary liaison between team members and the ECS program management team, ensuring timely updates on programs and personnel, and maintaining quality control on client deliverables.Collaborate with the Talent Acquisition team in the hiring process to ensure team resources align with client expectations and program requirements.Lead onboarding efforts, manage logistics for offboarding, and ensure operational continuity during transitions.

About Our TeamAt OpenAI, we believe that the development of artificial general intelligence must be conducted in a way that is safe and beneficial for all of humanity. Security is paramount to our mission and underpins every aspect of our work.Our Security team is dedicated to safeguarding OpenAI’s technology, personnel, and products. We adopt a highly technical approach to our creations while maintaining operational excellence in execution. Our core tenets include prioritizing impactful initiatives, empowering our researchers, anticipating future technological advancements, and fostering a robust security culture.About the PositionAs a Security Engineer specializing in insider threat detection and response, you will collaborate with our talented engineers and researchers to build and secure groundbreaking AI technologies. This role emphasizes the identification and mitigation of insider threats, ensuring the protection of OpenAI's most sensitive assets. Key responsibilities will include:Key Responsibilities:Innovate and enhance our detection and response infrastructure to automate comprehensive workflows for detection and investigation.Develop, assess, and refine detection rules to guarantee effective and sustainable operations.Lead projects across OpenAI’s technology landscape focusing on insider threats, including access abuse and intellectual property theft, as well as emerging risks associated with AI infrastructure.Collaborate with cross-functional teams such as HR, Legal, and investigative units, providing technical insights and evidence to support thorough investigations.Engage in pioneering AI research initiatives, leveraging AI to bolster OpenAI’s security framework.Ideal Candidate Profile:A minimum of 5 years of experience in a detection/response or insider risk role; we welcome both mid-level and senior applicants.Proficient in operating systems and platforms, including macOS, Windows, Linux, and Kubernetes, with hands-on experience in cloud infrastructure.Strong knowledge of modern adversarial tactics, data exfiltration methods, and experience in managing and leading incident responses.Demonstrated proficiency in scripting languages such as Python, Bash, or PowerShell.Possess excellent analytical and problem-solving skills, with a keen attention to detail.

The Senior Cyber Threat Intelligence Analyst is integral to the daily functions of our client's cyber threat intelligence team. Collaborating closely with the Team Lead, this role emphasizes the triage of cyber events, proactive threat hunting, and the enhancement of the Security Operations Center (SOC) technology stack. This is a hands-on opportunity for a cybersecurity enthusiast eager to develop leadership skills while directly aiding in the identification and mitigation of cyber threats.Respond to and manage security alerts and incidents in real-time.Conduct thorough analyses of logs, network traffic, and endpoint data to uncover malicious behavior.Provide clear recommendations and escalate critical incidents to the Team Lead and relevant stakeholders.Engage in proactive threat hunting to uncover anomalies, suspicious activities, and sophisticated threats.Contribute to the development of playbooks and use cases addressing emerging attack methodologies.Assist in optimizing and fine-tuning tools such as SIEM, SOAR, and EDR platforms.Create detection rules, automation scripts, and dashboards to boost team productivity.Collaborate on evaluating new technologies and potential integrations.

Join Anthropic as an Insider Risk Investigator, where you will be at the forefront of safeguarding our organization by employing both technical and human intelligence methodologies. In this pivotal role, you will analyze and investigate potential insider threats, collaborate with cross-functional teams, and leverage advanced analytical tools to ensure the integrity and security of our operations.

Join Sofi as a Lead Cyber Threat Intelligence Engineer and play a pivotal role in safeguarding our digital landscape. In this position, you will lead initiatives aimed at identifying, analyzing, and mitigating potential cyber threats, ensuring the safety and integrity of our systems and data.

Join Grow Therapy as a Security Risk Program Lead where you will play a pivotal role in enhancing our security protocols and risk management strategies. We are seeking a passionate leader who is committed to safeguarding our operations and ensuring compliance with industry standards.You will oversee the development and implementation of security risk programs, identify potential threats, and collaborate with cross-functional teams to mitigate risks effectively. If you are driven by a desire to create a secure environment for our team and clients, we would love to hear from you!

Join SoFi as a Senior Cyber Threat Intelligence Engineer, where you will play a crucial role in safeguarding our digital assets. You will analyze threat data, develop actionable intelligence, and collaborate with cross-functional teams to enhance our security posture. Your expertise will be pivotal in identifying and mitigating potential risks while leveraging advanced analytical tools.

SoFi is seeking an experienced and strategic Director of Cyber Threat Intelligence to lead our efforts in identifying and mitigating cyber threats. In this pivotal role, you will head our threat intelligence team, collaborating closely with cross-functional teams to enhance our security posture. You will be responsible for analyzing threat data, providing actionable insights, and developing intelligence reports that inform our security strategies.

Join Cloudflare as a Senior Threat Intelligence Engineer, where you will play a pivotal role in enhancing our security posture by analyzing and mitigating cyber threats. You will collaborate closely with cross-functional teams to develop strategies that protect our global network and safeguard our customers' data. Your expertise will be essential in driving threat intelligence initiatives, ensuring that we remain ahead of emerging threats.

Fastly seeks a Security Risk Lead to guide efforts in managing and reducing security risks across the organization. This role partners with teams company-wide to develop and implement risk management strategies that safeguard Fastly’s systems and data. Role focus The Security Risk Lead works at the intersection of technology and policy, shaping approaches that strengthen the company’s security posture. Collaboration with multiple departments is central to identifying vulnerabilities and ensuring consistent risk mitigation. Key responsibilities Work with teams throughout Fastly to identify, assess, and address security risks Help design and execute risk management strategies Support efforts to maintain the security and integrity of company systems and data Locations Denver, CO New York City, NY San Francisco, CA

Employee Applicant Privacy Notice About SoFi SoFi is a national bank and financial services provider focused on helping millions of members achieve their financial goals. The company builds mobile-first technology that empowers users to take control of their finances. SoFi’s work directly impacts people’s lives and shapes the financial industry. Core values guide the team as they work to improve both careers and the broader financial landscape. Role Overview The Security Product Lead for Product & AI Security sets the strategy, roadmap, and measurable outcomes for securing SoFi’s product lifecycle and supporting AI/ML initiatives. This position sits within the Security Strategy & Delivery team and works closely with leaders and teams in Product Security, Engineering, and Data Science/AI. Main Responsibilities Define and communicate the strategic direction for Product Security and AI Security as internal security products. Align security initiatives with enterprise risk priorities. Develop and maintain a clear roadmap for security capabilities. Establish and track key performance indicators (KPIs) to measure success. Implement structured program governance for security initiatives. Collaborate across teams to integrate security controls throughout the software development lifecycle (SDLC). Address unique risks associated with AI/ML systems. Influence stakeholders and drive alignment without direct authority. Help protect member trust, company assets, and support business stability and growth. Location Roles are available in Seattle, WA; Cottonwood Heights, UT; San Francisco, CA; New York City, NY; and Frisco, TX.

About the TeamAt OpenAI, security is integral to our mission of ensuring that artificial general intelligence serves the best interests of humanity.Our Threat Intelligence team is dedicated to safeguarding OpenAI’s technology, personnel, research, and infrastructure. We proactively identify and mitigate threats from adversaries aiming to exploit our systems or misuse our models. By investigating complex threats, developing scalable analytical tools, and delivering intelligence, we shape our security strategies and provide leadership with actionable insights. Our approach combines technical expertise, investigative thoroughness, and robust cross-functional collaboration to detect threats and enhance security across OpenAI’s various sectors.About the RoleWe are seeking a Technical Threat Investigator to bolster our defenses against sophisticated adversaries targeting OpenAI and the wider ecosystem, including those attempting to misuse our models for cyber operations.In this investigative role, you will independently conduct comprehensive investigations into advanced threat actors, analyzing their behaviors, infrastructures, and emerging techniques, including how they integrate AI into their operations. Your findings will be crucial in proactively identifying malicious activities and enhancing detection, disruption, enforcement, and overall safety within the organization.You will convert your investigative insights into scalable solutions. This includes developing lightweight tools, automating processes where feasible, and creating AI-assisted workflows to streamline investigations and improve effectiveness over time.In this role, you will:Perform thorough investigations into sophisticated threat actors interacting with OpenAI’s models, products, and ecosystem.Adopt an adversarial mindset—modeling attacker behavior, predicting misuse patterns, and actively hunting for and disrupting malicious activities.Utilize internal telemetry, open-source intelligence (OSINT), vendor data, and proprietary safety systems to generate high-confidence findings regarding adversarial use of our models in cyber operations and platform abuse.Translate investigative findings into tangible enhancements across detection, enforcement, intelligence, and safety frameworks.Develop tools, scripts, and automations to improve investigative processes and outcomes.

Founded in 2007, Airbnb has transformed the way people travel, connecting over 5 million hosts with more than 2 billion guest arrivals worldwide. Our platform offers unique stays and experiences that allow guests to engage with communities in an authentic way.Join Our Community:The Threat Detection and Response (TDR) team at Airbnb is dedicated to automating security detection, managing security incidents, and collaborating with partner teams to enhance incident response capabilities. As a front-line unit, we detect, investigate, and respond to security threats and malicious activities from both internal and external sources.In this pivotal role, you will contribute to our vision for robust threat detection and incident response capabilities. As a key engineer on the team, you will directly influence the development, optimization, and expansion of our security measures, delivering exceptional threat detection and incident response solutions.Your Impact:As an integral member of the TDR team, you will play a vital role in executing innovative strategies for threat detection, containment, and mitigation.You will collaborate with cross-functional partners across the organization to enhance Airbnb's overall security posture by applying insights from investigations and root cause analyses, effectively eliminating entire classes of issues.A Day in Your Role:Conduct thorough investigations of security incidents leveraging your expertise in digital forensics and data analytics.Utilize your coding, data analytics, and investigative skills to proactively hunt for, detect, and respond to threats.Develop automation and detection models to facilitate the identification of anomalous activities and streamline response efforts on a large scale.Engage in threat hunting within our corporate and production environments to proactively spot irregular activities.Collaborate closely with engineering teams to create advanced detection solutions that ensure the safety of systems and information, while working alongside partner teams for complex investigations.Identify infrastructure vulnerabilities and collaborate with business partners to improve visibility through enhanced logging and detection methods.

Join SoFi as a Security Product Lead in the realm of Enterprise & Identity Security. This pivotal role involves driving the strategy and execution of security initiatives that protect our enterprise infrastructure and user identities. You will collaborate with cross-functional teams to enhance our security posture and ensure that our products align with industry standards and best practices.

About Our TeamJoin our dynamic Intelligence & Investigations (I2) team, dedicated to identifying and mitigating abuse and strategic risks, ensuring the responsible and safe use of AI technology. We leverage real-world signals, thorough investigations, and external threat intelligence to develop actionable strategies, operating guidelines, and partner-ready support that enhance safety across the AI landscape.About the RoleAs the Product & Solutions Lead specializing in safety and security, you will spearhead the creation and implementation of innovative 0–1 products, services, and technical solution packages. Your work will empower developers and public institutions to transition from experimentation to achieving reliable, trusted outcomes while upholding public safety, transparency, and respect for individual rights.This pivotal role encompasses two primary delivery modes:Custom products and technical solutions tailored for key internal and external partners, andScalable product and solution packages designed for widespread reuse across various partners and deployments.While training is a component of scaling our solutions, your focus will also include delivering reference implementations, playbooks, evaluation kits, and replicable operating models that partners can easily adopt and implement.Collaborating closely with engineers and a multidisciplinary team of safety experts, geopolitical analysts, and data scientists, you will translate complex and evolving challenges into actionable solutions suitable for high-stakes environments.This position is located in San Francisco, CA (hybrid model, 3 days/week in-office). Relocation support is available for qualified candidates.Key Responsibilities:Lead the development of the 0–1 roadmap for safety and security solution offerings, which includes defining target users, problem statements, tools, operating models, success metrics, and reusable deliverables.Design and deliver custom technical solutions for priority partners, both internal and external, while abstracting successful strategies into reusable frameworks and toolkits.Create partner-ready technical documentation, including solution blueprints, reference architectures, evaluation and monitoring guidelines, incident response playbooks, and deployment checklists.Package both open-source and proprietary capabilities into ready-to-adopt solutions, such as reference implementations, configuration patterns, and validated workflows.Ensure a consistent delivery model across all engagements, encompassing intake, strategy formulation, and execution.

Join Oleria Security as a Senior Product Marketing Lead in our San Francisco office, where you will play a pivotal role in shaping our marketing strategies and driving product adoption. This is an exciting opportunity for a talented individual with a passion for technology and a strategic mindset.You will collaborate closely with cross-functional teams, including product management, sales, and engineering, to develop and execute robust marketing initiatives. Your expertise in understanding customer needs and market dynamics will be instrumental in crafting compelling product narratives and positioning strategies.

Join Mindlance as a Cyber Intelligence Security Analyst and be at the forefront of safeguarding our digital assets. In this role, you will leverage your analytical skills to monitor, assess, and mitigate security threats while collaborating with cross-functional teams to enhance our cyber defense strategies. This position offers a unique opportunity to contribute to the security posture of a leading organization in a dynamic environment.

About Our TeamThe Intelligence and Investigations team at OpenAI is committed to proactively identifying and mitigating online abuse and strategic risks. Our mission is to foster a safe digital ecosystem by analyzing emerging trends and collaborating with internal and external partners to implement effective measures against misuse. Through our initiatives, we contribute to OpenAI's goal of creating AI technologies that enhance human well-being.The Strategic Intelligence & Analysis (SIA) team specializes in providing safety intelligence for OpenAI’s products. By monitoring, analyzing, and forecasting real-world abuse, geopolitical risks, and strategic threats, we guide safety measures, product strategies, and partnerships. Our work ensures that OpenAI’s tools are utilized securely and responsibly in essential sectors.About the RoleAs a Data Scientist, you will spearhead econometric and experimental analyses to comprehend risk dynamics within complex human–AI systems. Your focus will be on quantifying the magnitude and implications of risk fluctuations in a fast-paced, evolving environment. You will design experimental and observational studies to uncover causal factors and assess risk changes across diverse surfaces and sources. Your insights will directly influence strategic risk management and prioritization across the organization.This position is based in San Francisco, CA (hybrid, 3 days/week) with relocation assistance available.Key Responsibilities:Design and execute experimental and observational analyses to evaluate strategic risks.Develop econometric models to assess the impact of product, policy, and external factors on critical risk vectors.Translate strategic risk inquiries into testable hypotheses and robust study frameworks.Implement A/B tests and pseudo-experimental studies to measure risk changes and uncover underlying mechanisms.Identify, test, and clarify product-driven, event-driven, or signal-driven risk variations.Establish baselines and statistical confidence around core metrics to define the scale of risks.Collaborate across teams to monitor strategic risks, pinpoint intervention opportunities, and assess the effectiveness of those interventions.

Join Cloudflare as a Security Third Party Risk Management Specialist III, where you will play a crucial role in evaluating and managing risks associated with our third-party vendors. You will be responsible for conducting thorough risk assessments, identifying vulnerabilities, and implementing effective security strategies to ensure the safety and integrity of our operations.