# Platform Hardware Security **Company**: Anthropic **Location**: San Francisco, CA **Work arrangement**: hybrid **Experience**: senior **Job type**: full-time **Salary**: $405,000-$405,000 USD **Category**: Engineering **Industry**: Technology **Wikidata**: https://www.wikidata.org/wiki/Q116758847 **Apply**: https://job-boards.greenhouse.io/anthropic/jobs/5257689008?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply **Canonical**: https://yubhub.co/jobs/job_30762975-c6d ## Description ## Job Overview We're seeking a Platform Hardware Security Engineer to design and implement security architectures for bare-metal infrastructure. You'll work with teams across Anthropic to build firmware, bootloaders, operating systems, and attestation systems to ensure the integrity of our infrastructure from the ground up. ## Key Responsibilities - Design and implement secure boot chains from firmware through OS initialization for diverse hardware platforms (CPUs, BMCs, switches, peripherals, and embedded microcontrollers) - Architect attestation systems that provide cryptographic proof of system state from hardware root of trust through application layer - Develop measured boot implementations and runtime integrity monitoring - Create reference architectures and security requirements for bare-metal deployments - Integrate security controls with infrastructure teams without impacting training performance - Prototype and validate security mechanisms before production deployment - Conduct firmware vulnerability assessments and penetration testing - Build firmware analysis pipelines for continuous security monitoring - Document security architectures and maintain threat models - Collaborate with software and hardware vendors to ensure security capabilities meet our requirements ## Requirements - Hands-on experience with secure boot, measured boot, and attestation technologies (TPM, Intel TXT, AMD SEV, ARM TrustZone) - Strong understanding of cryptographic protocols and hardware security modules - Experience with UEFI/BIOS or embedded firmware security, bootloader hardening, and chain of trust implementation - Proficiency in low-level programming (C, Rust, Assembly) and systems programming - Knowledge of firmware vulnerability assessment and threat modeling - Track record of designing security architectures for complex, distributed systems - Experience with supply chain security - Ability to work effectively across hardware and software boundaries - Knowledge of NIST firmware security guidelines and hardware security frameworks ## Preferred Qualifications - 8+ years of experience in systems security, with at least 5 years focused on firmware and hardware security (firmware, bootloaders, and OS-level security) - Experience with confidential computing technologies and hardware-based TEEs - Knowledge of SLSA framework and software supply chain security standards - Experience securing large-scale HPC or cloud infrastructure - Contributions to open-source security projects (coreboot, CHIPSEC, etc.) - Background in formal verification or security proof techniques - Experience with silicon root of trust implementations - Experience working with building foundational technical designs, operational leadership, and vendor collaboration - Previous work with AI/ML infrastructure security ## Logistics - Annual Salary: $405,000-$405,000 USD - Minimum education: Bachelor’s degree or an equivalent combination of education, training, and/or experience - Required field of study: A field relevant to the role as demonstrated through coursework, training, or professional experience - Minimum years of experience: Years of experience required will correlate with the internal job level requirements for the position - Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices. - Visa sponsorship: We do sponsor visas! ## Skills ### Required - secure boot - measured boot - attestation technologies - cryptographic protocols - hardware security modules - UEFI/BIOS - embedded firmware security - bootloader hardening - chain of trust implementation - low-level programming - systems programming - firmware vulnerability assessment - threat modeling - supply chain security - NIST firmware security guidelines - hardware security frameworks ### Nice to have - confidential computing technologies - hardware-based TEEs - SLSA framework - software supply chain security standards - securing large-scale HPC or cloud infrastructure - contributions to open-source security projects - formal verification - security proof techniques - silicon root of trust implementations - foundational technical designs - operational leadership - vendor collaboration - AI/ML infrastructure security --- Source: [Apply at job-boards.greenhouse.io](https://job-boards.greenhouse.io/anthropic/jobs/5257689008?utm_source=yubhub.co&utm_medium=jobs_feed&utm_campaign=apply)