Senior Security Engineer

About You.com:

With a deep foundation in search, You.com is truthful, accurate, and transparent, and addresses hallucinations.

You.com was founded by leading AI research scientists, Richard Socher and Bryan McCann. Richard was previously the Chief Scientist at Salesforce and is the third most-cited researcher in natural language processing (NLP) with over 170,000 citations. Bryan was a lead research scientist at Salesforce Research specializing in deep learning and NLP. Over the years, Richard and Bryan’s collaborative research has had significant implications for the field of NLP, particularly in the areas of word vectors, contextual vectors, and prompt engineering. Richard's contributions were recently recognized with his inclusion in Time Magazine’s TIME100 AI list in 2023 as one of the “most influential people in AI” and the prestigious 2023 ACL Test-of-Time Paper Award for his influential research published in 2013.

Since its founding, You.com has transformed how people discover and engage with information online as an AI Assistant that helps people accomplish and solve everyday needs. Recognized as one of Fortune Magazine’s 50 AI Innovators for 2023 and featured in Time Magazine’s “Best Inventions of 2022,” You.com has pioneered many solutions for Large Language Model (LLM) challenges, especially around trust and accuracy. You.com notably introduced the first consumer-facing LLM with access to the internet to provide up-to-date answers and include citations. You.com's API further enables other LLM-based chatbots to improve their accuracy with real-time web access. You.com also emphasizes personalized AI chat experiences, offering tailored responses based on users’ backgrounds, interests, and preferences while respecting privacy and ensuring transparent control over personal data.

You.com is accessible on desktop, Chrome web extensions, iOS and Android apps, and WhatsApp.

About the role:

The Security Engineering team at You.com ensures that engineering teams across the company are enabled to securely design, build, test, and maintain the software & infrastructure that powers our business. We focus on establishing a "paved road" so that engineers can move confidently and deliver secure technologies with minimal friction.

Responsibilities:

• Support engineers across the SDL as a security subject matter expert, including design reviews, threat modeling, code review, patch creation, and penetration testing.

• Collaborate with product and engineering on architecting resilient, security-first services.

• Perform deep, technical security assessments to ensure services follow secure design principles across our engineering portfolio.

• Develop automation of high-signal security tooling through customizations and plugins.

• Support third-party security consultants to provide external validation …