Security Engineer, Research & Engineering
About the role
This role is for a security-focused software engineer who will design, build, and enhance security tools and frameworks across various contexts. You'll work on projects ranging from AI/ML security frameworks to compiler-based security tools, and everything in between, contributing to software that makes a real difference in the security landscape.
Responsibilities
- Design and implement security-focused software tools and frameworks, contributing to projects that help achieve their technical milestones
- Contribute to open-source security projects and develop internal tools that advance Trail of Bits' core competencies
- Analyze complex security challenges and develop practical, deployable solutions
- Take ownership of deconstructing high-level objectives into smaller, more manageable tasks
- Understand security implications across the stack, from low-level systems to application frameworks
- Implement secure CI/CD pipelines and integration with GitHub Actions
- Contribute to AI/ML security research and tooling
- Evaluate and improve the security of existing software through code review and enhancement
- Communicate technical concepts effectively to team members, clients, and the broader security community
- Write blog posts, participate in Lunch 'n' Learns, and grow toward delivering client-side presentations
- Root-cause analysis and debugging on low-level technical issues
- Interpret requirements, decompose tasks, and make engineering estimates
- Work toward leading major feature development and moving projects toward their milestones
Requirements
Strong software development skills with experience in: Rust, C++, and/or Python. Occasionally, Go or Java knowledge is necessary
Familiarity with AI/ML systems and associated security challenges
Experience with secure development practices and building secure software
Demonstrated ability to quickly learn new programming languages, frameworks, and technologies
Understanding of computer security principles and common vulnerability classes
A drive to develop subject-matter expertise in an area of Trail of Bits' core competency
Strong written and verbal communication skills, with a willingness to write blog posts and present at internal knowledge-sharing sessions
Familiarity with GitHub, CI/CD pipelines, and automated testing
Qualifications
- Prior contributions to open-source security tools or frameworks
- Experience developing commercial-grade software used by the public
- Understanding of low-level systems, including memory management and operating system internals
- Experience with compiler technology, program analysis, or binary analysis
- Participation in CTF competitions or other security challenges
- Experience with multiple programming languages and paradigms
- Experience in reading, writing, and publishing academic papers
- Experience in public speaking
Skills
Strong software development skills with experience in: Rust, C++, and/or Python. Occasionally, Go or Java knowledge is necessary
Familiarity with AI/ML systems and associated security challenges
Experience with secure development practices and building secure software
Demonstrated ability to quickly learn new programming languages, frameworks, and technologies
Understanding of computer security principles and common vulnerability classes
Benefits
Empowered Living: Competitive salary complemented by performance-based bonuses
Fully company-paid insurance packages, including health, dental, vision, disability, and life
A solid 401(k) plan with a 5% match of your base salary
20 days of paid vacation with flexibility for more, adhering to jurisdictional regulations
Nurturing New Beginnings: 4 months of parental leave to cherish the arrival of new family members
Working-from-Home stipend to create a comfortable and productive home office
$750 Learning & Development stipend for continuous personal and professional growth
Company-sponsored all-team celebrations, including travel and accommodation, to foster community and recognize achievements
Philanthropic contribution matching up to $2,000 annually