Security Researcher, Codex Security

Job description

About the Team: Security is at the foundation of OpenAI’s mission to ensure that artificial general intelligence benefits all of humanity. Codex Security is OpenAI’s first security agent, built to scan GitHub Cloud repositories, validate real vulnerabilities, and integrate with Codex to help generate fixes. About the Role: Lead an effort to map, characterize, and prioritize cross-layer vulnerabilities in advanced AI systems – spanning data pipelines, training/inference runtimes, system and supply chain components. You’ll drive offensive research, produce technical deliverables, enhance the Codex Security product line, and serve as OpenAI’s primary technical counterpart for select external partners (including potential U.S. government stakeholders). What you’ll do: Conduct deep security research on real-world software systems to discover complex vulnerabilities across large codebases and distributed architectures. Investigate and validate vulnerabilities discovered by AI-driven security agents, including building proofs-of-concept and exploit demonstrations. Partner with engineering teams to improve automated vulnerability discovery, validation, and remediation workflows as part of...