Data Center Security Engineer

About Anthropic

Anthropic’s mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems.

About the role

As a member of the Global Data Center Security Engineering team at Anthropic, you will be responsible for ensuring the security and integrity of our most critical infrastructure – the data centers that power our frontier AI systems. In this role you will work closely with teams across all engineering to develop solutions to ensure our data center security posture supports the ambitious mission of Anthropic. Your work will be essential in safeguarding the systems that advance our mission to build safe and beneficial AI. You will be responsible for the development, implementation and validation of key security outcomes with a strong focus on ensuring persistent media (SSDs, HDDs, NVMe, etc) across a wide variety of infrastructure platforms. The ability to design solutions that meet or exceed compliance and regulatory requirements while meeting internal security requirements will play a critical role in being able to meet the scaling requirements as well as influencing industry.

Responsibilities

• Establish an encryption at rest storage strategy applicable to production, research and development of our frontier AI models.
• Establish and enforce a strict set of policies to ensure the complete lifecycle for persistent storage media.
• Develop a strategy for key management and rotation, (both regular and emergency) in partnership with infrastructure engineering teams.
• Define the various stages for media (clean, new, sanitized, non-sensitive) and ensure the states have rigorous transition states that are logged and monitored.
• Design and implement chain of custody procedures that are commensurate with the risk.
• Partner with internal and external Red Teams to test initial deployment of the strategy.
• Ensure the protocols supporting the policies are understood by operations teams and not provide undue cost or burden to deployment velocity.
• Ensure the policies, processes and procedures not only meet the existing needs to protect models weights, training data, but are adaptable to onboard new areas of business, e.g. HIPAA compliance.
• Develop incident response protocols and business continuity plans for when things don’t go as planned.
• In addition to persistent storage media security you will participate in a broader data center security posture program to ensure alignment.
• Define and track KPIs for media security posture, incident response effectiveness, and policy compliance.
• Contribute to relevant industry standards bodies and security consortiums (e.g. IEEE, NIST, OCP).

You may be a good fit if you:

• Have 10+ years of experience in storage device security.
• Have proven expertise designing and implementing storage.