Principal Security Engineer/Head of Security

Magic’s mission is to build safe AGI that accelerates humanity’s progress on the world’s most important problems. We believe the most promising path to safe AGI lies in automating research and code generation to improve models and solve alignment more reliably than humans can alone. Our approach combines frontier-scale pre-training, domain-specific RL, ultra-long context, and test-time compute to achieve this goal.

About the role:

As Principal Security Engineer, your primary job is to ensure our model weights and code stay within the company. We treat our model weights with the same importance as a government would treat its nuclear codes. They are the result of tens of millions of dollars in compute investment and invaluable internal research breakthroughs. In the wrong hands, they could cause significant harm.

You will architect, implement and maintain robust security solutions to protect our AI systems, IP, product and data from a wide range of threats. This is a hands-on role - you will code a lot.

What you might work on:

• Implement and measure progress towards the security goals in our AGI Readiness Policy
• Respond to and investigate security incidents
• Develop strategies to safeguard AI training and inference processes from potential threats
• Design, build, and maintain security tooling used by Magic's engineering teams, including hands-on writing code
• Enhance our detection infrastructure to protect data and systems from emerging threats, improving detective and corrective controls
• Conduct regular security assessments and red-teaming efforts to identify vulnerabilities and implement effective countermeasures
• Mitigate the risks from supply chain attacks through diligent assessments and minimizing surface area
• Tell us what we are missing on this list, and help us implement it
  
  

What we’re looking for:

• Significant experience as a technical security leader at a major organization or government agency
• Strong software engineering skills
• On-call readiness 24/7, assisted by our team
• Experience with complex security breaches and remediation efforts
• Ability to develop high-complexity cloud linux-based exploits
• Experience architecting zero-trust environments
• Track record of exceptional personal integrity, accountability and trustworthiness
  
  

Magic strives to be the place where high-potential individuals can do their best work. We value quick learning and grit just as much as skill and experience.

Our culture:

• Integrity. Words and actions should be aligned
• Hands-on. At Magic, everyone is building
• Teamwork. We move as one team, not N individuals
• Focus. Safely deploy AGI. Everything else is noise
• Quality. Magic should feel like magic
  
  

Compensation, benefits and perks (US):

• Annual salary range: $100K - $1M
• Equity is a significant part of total compensation, in addition to salary
• 401(k) plan with 6% salary matching
• Generous health, dental and vision insurance for you and your dependents
• Unlimited paid time off
• Option to work in-person in SF or remotely
• Visa sponsorship and relocation stipend to bring you to SF
• A small, fast-paced, highly focused team