Frontier Research Engineer, Security

Frontier Research Engineer, Security

Full-Time 60000 - 80000 £ / year (est.) Home office (partial)
AI Security Institute

At a Glance

  • Tasks: Help design secure platforms for cutting-edge AI research and build reusable infrastructure.
  • Company: Join the world's leading team focused on AI security and risk management.
  • Benefits: Competitive salary, generous leave, learning stipends, and hybrid working options.
  • Other info: Dynamic work environment with opportunities for growth and influence in AI governance.
  • Why this job: Make a real impact on AI safety while working with top experts and government leaders.
  • Qualifications: Strong coding skills, a passion for security, and experience with cloud technologies.

The predicted salary is between 60000 - 80000 £ per year.

The AI Security Institute is the world's largest and best-funded team dedicated to understanding advanced AI risks and translating that knowledge into action. We’re in the heart of the UK government with direct lines to No. 10 (the Prime Minister's office), and we work with frontier developers and governments globally. We’re here because governments are critical for advanced AI going well, and UK AISI is uniquely positioned to mobilise them. With our resources, unique agility and international influence, this is the best place to shape both AI development and government action.

About the Team

Security Engineering at the AI Security Institute (AISI) exists to help our researchers move fast, safely. We treat security as a measurable, researcher-centric product. We build secure-by-design platforms, automated governance, and intelligence-led detection that protects our people, partners, models, and data. We work shoulder to shoulder with research units and core technology teams, and we optimise for enablement over gatekeeping, proportionate controls, low ego, and high ownership.

What you might work on:

  • Help design and ship paved roads and secure defaults across our platform so researchers can build quickly and safely.
  • Build tooling and reusable infrastructure‑as‑code modules that make the secure path the easy path.
  • Build provenance and integrity into the software supply chain (signing, attestation, artefact verification, reproducibility).
  • Support strengthened identity, segmentation, secrets, and key management to create a defensible foundation for evaluations at scale.
  • Develop automated, evidence‑driven assurance mapped to relevant standards, reducing audit toil and improving signal.
  • Create detections and response playbooks tailored to model evaluations and research workflows, and run exercises to validate them.
  • Threat‑model new evaluation pipelines with research and core technology teams, fixing classes of issues at the platform layer.
  • Assess third‑party services and hardware/software supply chains, and introduce lightweight controls that raise the bar.
  • Contribute to open standards and open source, and share lessons with the broader community where appropriate.

If you want to build security that accelerates frontier‑scale AI safety research, and see your work land in production quickly, this is a good place to do it.

Role Summary

We’re looking for a strong software engineer who’s drawn to security. Someone who would rather ship a paved road than write a policy, and who’s excited by the prospect of building the security foundations for frontier‑scale AI safety research. You don’t need to be a career security specialist. You do need to be a genuinely good engineer who thinks adversarially, cares about getting the defaults right, and wants to go deep on security over the coming years.

Working as a hands‑on engineer on AISI’s Security Engineering team, building the secure‑by‑default patterns, reusable controls, and guardrails that the rest of the organisation builds on top of. You’ll spend at least your first year focused on platform and product security, embedding safe practices across the development lifecycle, hardening our cloud and CI/CD foundations, and partnering with engineers to fix classes of issues rather than one‑off bugs.

You’ll build influence through enablement, not enforcement. Over time, you’ll extend these patterns. We expect your security depth to grow on the job; we’ll back that with mentorship, learning budget, and real ownership early.

Responsibilities:

  • Write production‑quality code and reusable infrastructure‑as‑code (Terraform, CDK, etc.) that delivers secure‑by‑default modules, bootstrap templates, and reference architectures.
  • Build tooling for identity, secrets, environment isolation, and pipeline hardening.
  • Develop and help maintain a baseline cloud control set (e.g. SCPs, logging, tagging) and improve cloud posture with automated feedback loops.
  • Provide consulting and coaching to platform and product teams to support secure delivery.
  • Threat‑model new and existing systems with research and core technology teams, and fix issues at the platform layer.
  • Build provenance and integrity into the software supply chain (signing, attestation, artefact verification).
  • Help create detections and response playbooks, support post‑incident reviews, and design for resilience.
  • Align technical controls with governance and shared responsibility boundaries.

Profile requirements:

You may be a good fit if you have some of the following skills, experience, and attitudes:

  • Writing production‑quality code at a fast pace, and designing, shipping, and maintaining complex tech products.
  • A genuine pull toward security; you think adversarially, enjoy understanding how systems break, and want to make the secure path the default path.
  • Strong Python and/or another production language, including the good vs. bad ways of doing things and a feel for the wider ecosystem and tooling.
  • Experience building and maintaining systems on AWS or other cloud providers using infrastructure‑as‑code (Terraform, CDK, etc.).
  • Solid understanding of CI/CD pipelines and the software development lifecycle.
  • You take the trajectory of frontier AI seriously, and you’re motivated by the mission of making it safe.
  • Strong written and verbal communication, and the ability to build influence in cross‑functional environments.
  • Improving technical standards across a team through mentoring and feedback.

Motivated candidates are encouraged to apply even if you don’t meet all the above criteria. We care more about engineering ability, security instinct, and trajectory than a long security CV.

Desired experience:

We additionally may factor in experience with areas like:

  • Cloud security, identity, networking, and org‑level services.
  • Cybersecurity expertise (threat modelling, detection and response, supply‑chain security, secrets management).
  • Software supply‑chain security and provenance.
  • ML Ops and AI/ML platform surfaces.
  • Practical understanding of AI/ML risks.
  • Strong software engineering and the ability to design reusable IaC components.
  • Security instinct: threat modelling, secure defaults, and paved paths.
  • Collaboration across platform and research teams.
  • Cloud fundamentals (AWS), with appetite to go deep on cloud security.
  • Growing capability in securing AI/ML workloads and artefacts.

Security Clearance:

Appointment is conditional on successfully completing UK Government SC clearance. Prior clearance is not required—we will sponsor and support you. You should normally have been resident in the UK for the past 5 years. More detail on clearance eligibility can be found on the UK Government website: National security vetting: clearance levels - GOV.UK.

What We Offer:

  • Impact you couldn't have anywhere else.
  • Incredibly talented, mission‑driven and supportive colleagues.
  • Direct influence on how frontier AI is governed and deployed globally.
  • Work with the Prime Minister’s AI Advisor and leading AI companies.
  • Opportunity to shape the first & best‑resourced public‑interest research team focused on AI security.
  • Resources & access: Pre‑release access to multiple frontier models and ample compute.
  • Extensive operational support so you can focus on research and ship quickly.
  • Work with experts across national security, policy, AI research and adjacent sciences.
  • If you’re talented and driven, you’ll own important problems early.
  • 5 days off and annual stipends for learning and development, and funding for conferences and external collaborations.
  • Freedom to pursue research bets without product pressure.
  • Opportunities to publish and collaborate externally.

Life & family:

  • Modern central London office (cafes, food court, gym), or where applicable, option to work in similar government offices in Birmingham, Cardiff, Darlington, Edinburgh, Salford or Bristol.
  • Hybrid working, flexibility for occasional remote work abroad and stipends for work‑from‑home equipment.
  • At least 25 days’ annual leave, 8 public holidays, extra team‑wide breaks and 3 days off for volunteering.
  • Generous paid parental leave (36 weeks of UK statutory leave shared between parents + 3 extra paid weeks + option for additional unpaid time).
  • On top of your salary, we contribute 28.97% of your base salary to your pension.
  • Discounts and benefits for cycling to work, donations and retail/gyms.

These benefits apply to direct employees. Benefits may differ for individuals joining through other employment arrangements such as secondments.

Annual salary is benchmarked to role scope and relevant experience. Most offers land between £65,000 and £145,000 made up of a base salary plus a technical allowance (take‑home salary = base + technical allowance). An additional 28.97% employer pension contribution is paid on the base salary.

This role sits outside of the DDaT pay framework given the scope of this role requires in depth technical expertise in frontier AI safety, robustness and advanced AI architectures.

Frontier Research Engineer, Security employer: AI Security Institute

The AI Security Institute is an exceptional employer, offering a unique opportunity to work at the forefront of AI safety research in a dynamic and supportive environment. With direct access to government leaders and a mission-driven culture, employees benefit from extensive resources, mentorship, and a commitment to professional growth, all while enjoying a modern office in central London or other key UK locations. The organisation prioritises work-life balance with generous leave policies, hybrid working options, and a strong focus on employee well-being.

AI Security Institute

Contact Details:

AI Security Institute Recruitment Team

StudySmarter Expert Advice🤫

We think this is how you could land Frontier Research Engineer, Security

Get Involved in the Cybersecurity Community

Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!

Show Off Your Skills with Capture the Flag Competitions

Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including AI Security Institute, love seeing candidates who actively engage in these challenges.

Tailor Your Online Presence

Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!

Apply Directly Through AI Security Institute

Don’t forget to head straight to our website and check out any openings for cybersecurity roles at AI Security Institute. Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.

We think you need these skills to ace Frontier Research Engineer, Security

Production-quality code writing
Infrastructure-as-code (Terraform, CDK)
Cloud security (AWS or other providers)
CI/CD pipeline management
Threat modelling
Software supply chain security
Provenance and integrity in software

Some tips for your application 🫡

Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!

Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!

Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at AI Security Institute insight into your practical problem-solving abilities and makes your application memorable.

Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to AI Security Institute that you’re committed to staying ahead in the game.

How to prepare for a job interview at AI Security Institute

Sharpen Your Technical Skills

For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.

Prepare for Scenario-Based Questions

Expect the interviewers at AI Security Institute to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.

Highlight Your Certifications

Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at AI Security Institute.

Show Your Passion for Cybersecurity

Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.