Senior Offensive Security Engineer (AppSec)
Job Description
About Us:
webAI is pioneering the future of artificial intelligence by establishing the first distributed AI infrastructure dedicated to personalized AI. We recognize the evolving demands of a data-driven society for scalability and flexibility, and we firmly believe that the future of AI lies in distributed processing at the edge, bringing computation closer to the source of data generation. Our mission is to build a future where a company's valuable data and intellectual property remain entirely private, enabling the deployment of large-scale AI models directly on standard consumer hardware without compromising the information embedded within those models. We are developing an end-to-end platform that is secure, scalable, and fully under the control of our users, empowering enterprises with AI that understands their unique business. We are a team driven by truth, ownership, tenacity, and humility, and we seek individuals who resonate with these core values and are passionate about shaping the next generation of AI.
About the Role:
We are building the next generation of decentralized, on-edge AI infrastructure. Our platform enables intelligent systems to operate securely across distributed environments without relying on centralized cloud architectures.
We are seeking a highly technical, hands-on Cybersecurity Engineer who combines an offensive security mindset with deep expertise in secure software development. This individual will play a critical role in securing our Rust-based software stack, peer-to-peer networking architecture, and distributed AI systems from design through deployment.
The ideal candidate is a hacker who understands how modern systems fail and can proactively embed security into every layer of the product lifecycle.
Responsibilities:
Lead security efforts across the entire software development lifecycle (SDLC), with a strong focus on secure-by-design principles.
Perform threat modeling and security architecture reviews for distributed, peer-to-peer, and edge AI systems.
Identify vulnerabilities through offensive testing, adversarial simulations, and hands-on security research.
Partner closely with software engineers to build secure Rust applications and libraries.
Define and implement secure coding standards, security testing frameworks, and security automation.
Assess and improve the security posture of decentralized networking protocols and distributed computing architectures.
Evaluate, design, and implement cryptographic protocols, key management systems, and trust frameworks.
Conduct code reviews focused on security, resilience, and exploitability.
Lead incident response, root cause analysis, and remediation efforts when security issues arise.
Build security tooling and detection capabilities that scale with a rapidly evolving engineering organization.
Stay current on emerging threats targeting AI systems, distributed infrastructure, cryptography, and software supply chains.
Qualifications:
7+ years of experience in cybersecurity, application security, product security, or secure systems engineering.
Strong proficiency securing modern software systems written in various languages.
Deep understanding of secure software development practices and SDLC security controls.
Experience securing distributed systems, peer-to-peer architectures, or decentralized platforms.
Demonstrated offensive security skills focused on identifying real-world attack paths.
Strong understanding of cryptography, authentication / authorization systems, secure communications protocols, public key infrastructure and secure key management.
Experience conducting threat modeling, penetration testing, security architecture reviews and secure code reviews
Strong knowledge of common software vulnerabilities and exploitation techniques.
Ability to communicate complex security concepts to engineers and leadership.
Industry leading, offensive security certifications are a plus: CSSLP, GWAPT, OSWE, etc
We at webAI are committed to living out the core values we have put in place as the foundation on which we operate as a team. We seek individuals who exemplify the following:
Truth - Emphasizing transparency and honesty in every interaction and decision.
Ownership - Taking full responsibility for one’s actions and decisions, demonstrating commitment to the success of our clients.
Tenacity - Persisting in the face of challenges and setbacks, continually striving for excellence and improvement.
Humility - Maintaining a respectful and learning-oriented mindset, acknowledging the strengths and contributions of others.
Benefits:
We strive to provide competitive benefits to all employees. The benefits listed in this posting generally apply to U.S.-based employees. For employees hired outside the United States, benefits may vary based on local law, country-specific requirements, and the employment platform or entity through which the employee is hired.
Competitive salary
Comprehensive health, dental, and vision benefits package
401(k) match
Equity options
$200/month Health & Wellness stipend
Continuing Education support
$500/year Function Health subscription
Free parking for in-office employees
Flexible Time Off (FTO)
Parental leave for eligible employees
Supplemental life insurance
webAI is an Equal Opportunity Employer and does not discriminate against any employee or applicant on the basis of age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We adhere to these principles in all aspects of employment, including recruitment, hiring, training, compensation, promotion, benefits, social and recreational programs, and discipline. In addition, it is the policy of webAI to provide reasonable accommodation to qualified employees who have protected disabilities to the extent required by applicable laws, regulations and ordinances where a particular employee works.