Cyber Security Engineer

ABOUT GRAY SWAN

Gray Swan protects organizations from emerging AI security threats. We build real-time threat detection, automated validation, and adaptive defenses for AI labs and enterprises. We’re a team of ~45 people, well-funded, and growing fast.

We have strong traction and globally recognized customers, which means employees here take on real responsibility and meaningful equity from day one. This is a high-ownership environment where you’ll work on hard problems, move quickly, and help shape both the product and the company.

Many people join Gray Swan because our mission matters. We’re doing practical, high-impact work in AI safety, and that sense of purpose is a core reason why engineers and researchers choose us.

Learn more about how we work https://www.grayswan.ai/about.

THE ROLE

We’re looking for a Cyber Security Engineer to help secure both Gray Swan’s internal infrastructure and the systems we use to deliver security products to customers. You’ll be responsible for building and improving our security posture across cloud environments, endpoints, applications, and AI infrastructure while partnering closely with Engineering, Product, and Operations teams. This role combines hands-on technical work, security operations, and strategic security planning in a fast-moving AI company.

WHAT YOU’LL DO

• Design, implement, and maintain security controls across cloud infrastructure, endpoints, applications, and internal systems.
• Monitor, investigate, and respond to security events, incidents, and potential threats in collaboration with internal teams and external security providers.
• Manage and optimize security technologies including EDR/XDR, SIEM, vulnerability management, and identity management platforms.
• Conduct security assessments, vulnerability reviews, penetration testing coordination, and risk analyses for internal systems and third-party applications.
• Partner with Engineering and Product teams to integrate security best practices into software development, deployment, and AI workflows.
• Help develop security policies, incident response procedures, and operational processes that scale with company growth.

WHO YOU ARE

• 5+ years of experience in cybersecurity, security engineering, security operations, or a related field.
• Strong understanding of networking, operating systems, cloud security, identity management, and common attack techniques.
• Experience deploying and managing security tools such as EDR/XDR platforms, SIEMs, vulnerability scanners, and security monitoring solutions.
• Proficiency with scripting and automation using Python, Ansible, Terraform, or similar languages.
• Familiarity with security frameworks such as SOC, NIST CSF, CIS Controls, or ISO 27001.
• Actively participated in or led a compliance effort for a security framework.
• Excellent communication skills and the ability to explain security concepts to both technical and non-technical stakeholders.

BONUS POINTS IF YOU HAVE

• Experience securing AI, machine learning, or cloud-native environments.
• Experience working with SentinelOne, CrowdStrike, Fortinet firewalls, or similar technologies.
• Familiarity with compliance platforms such as Drata, Vanta, or SecureFrame.
• Experience managing relationships with managed SOC providers or participating in security operations programs.
• Hands-on experience with AWS, Azure, or GCP security architectures.
• Security certifications such as CISSP, GSEC, CEH, GIAC, or CCSP.
• Experience operating in highly regulated industries including government, defense, healthcare, or financial services.

If you don’t have 100% of these, you should still seriously consider applying. We care more about what you can do than your credentials.

YOU’LL THRIVE HERE IF YOU

• Enjoy taking ownership and solving ambiguous problems without waiting for detailed instructions.
• Like balancing hands-on technical work with strategic thinking and long-term planning.
• Are naturally curious and stay up to date on emerging security threats, technologies, and AI-related risks.
• Communicate clearly and work effectively across engineering, product, and business teams.
• Care deeply about building trustworthy, secure technology that protects customers.
• You want to help shape the security culture and practices of a fast-growing company.

WHAT WE OFFER

We offer a competitive compensation package designed to reward impact and incentivize growth. Our compensation philosophy is informed by our current valuation and recent industry data.

Compensation: $95,000 - $145,000 plus performance-based bonus and meaningful equity package

BENEFITS

• 401k with up to 4% matching
• 28 days annual leave (vacation + holidays)
• Health, dental, and vision coverage
• Catered lunches (Pittsburgh office)
• Flexible work arrangements
• Visa sponsorship available for exceptional candidates

INTERVIEW PROCESS

🔎 Application review. We read everything; we’ll respond within 10 days.

✏️ Online technical screen (15 min). Complete a simple, job-relevant exercise.

🗣 Intro call (30 min). We learn about you; you learn about us.

🧑‍💻 Technical interview (90 min). Practical security and problem-solving exercises relevant to the role.

🗣 Experience & culture interview (60 min). Conversational exploration of your experience, working style, and values.

😇 Reference checks. We’ll reach out to 3–5 references that you provide.

📃 Offer. If it’s mutual, we move fast.

HOW TO APPLY

Submit your resume, link to your portfolio, and answer the questions on the application.