Who We Are
Founded in 2012 by 3 expert hackers with no investment capital, Trail of Bits is the premier place for security experts to boldly advance security and address technology's newest and most challenging risks. It has helped secure some of the world's most targeted organizations and devices. Our combination of novel research with practical solutions reduces the security risks that our clients face from emerging technologies. Our work helps drive the security industry and the public understanding of the technology underlying our world.
Cybersecurity preparedness is a moving target. Companies like ours are the tip of the spear in the fight against attackers. Our research-based and custom-engineering approach ensures that our client's capabilities are at the forefront of what's available. For companies and technologies that live and die by their security, a proactive, tailored approach is required to keep one step ahead of attackers.
Democratizing security information is essential. As part of our business, we provide ongoing informational support through blogs, whitepapers, newsletters, meetups, and open-source tools. The more the community understands security, the more they'll understand why a company like ours is so unique and valuable.
Role
Trail of Bits seeks a Machine Learning Security Researcher within our growing AI Assurance team. This role involves conducting cutting-edge security research on machine learning systems deployed by the world's most sophisticated AI organizations. The position focuses on identifying novel attack vectors, failure modes, and security vulnerabilities in state-of-the-art ML systems—from training pipelines and model architectures to deployment infrastructure and inference systems.
You will work directly with leading AI labs and frontier model developers to ensure their systems are robust against emerging threats. This is a research role that requires deep AI/ML expertise, with no application security background necessary. The role involves contributing to the broader AI/ML security research community through tool development, threat modeling frameworks, and publications, while helping to define what secure AI development looks like at the frontier.
What You'll Achieve
- ML Security Research: Conduct original security research on cutting-edge machine learning systems, identifying novel attack vectors including adversarial examples, model poisoning, data extraction attacks, and jailbreaks for large language models and other foundation models
- Client Assurance: Work directly with top-tier AI organizations (frontier labs, leading AI companies) to assess the security posture of their most advanced ML systems, providing expertise that matches their internal research capabilities
- AI/ML Security Tool Development: Design and build novel security testing frameworks, evaluation methodologies, and open-source tools specifically for AI/ML security research—including adversarial robustness testing, model extraction detection, and automated vulnerability discovery systems
- Threat Intelligence & Modeling: Develop comprehensive threat models for emerging AI/ML deployment patterns, anticipate future attack vectors, and establish security frameworks that can scale with rapidly evolving AI capabilities
- Research Community Engagement: Publish findings, present at security and AI/ML conferences, and contribute to the broader AI/ML security research discourse through papers, blog posts, and open-source contributions
- Cross-Disciplinary Collaboration: Bridge AI/ML research and security engineering, translating complex adversarial AI/ML concepts to diverse stakeholders and working closely with Trail of Bits' broader security research teams
What You'll Bring
- Advanced AI/ML Research Background: PhD-level expertise (completed, near completion, or equivalent research experience) in machine learning, deep learning, or related fields with demonstrated research contributions
- AI/ML Security Knowledge: Strong understanding of adversarial machine learning, including familiarity with attack paradigms such as evasion attacks, poisoning attacks, model inversion, membership inference, backdoor attacks, or prompt injection/jailbreaking techniques. Experience specifically in adversarial ML, robustness, or AI safety research is highly valued
- Deep Technical ML Expertise: Extensive hands-on experience with modern ML frameworks (PyTorch, JAX, TensorFlow), transformer architectures, training methodologies, and the full ML development lifecycle from data pipelines to deployment. Familiarity with CUDA programming, GPU optimization, or ML systems performance is a plus
- Research Excellence: Track record of high-quality research demonstrated through publications, preprints, open-source contributions, or other artifacts that the ML community recognizes. We're looking for people other ML researchers would call "cracked." Publications at top-tier ML conferences (NeurIPS, ICML, ICLR) or security venues (USENIX Security, S&P, CCS) are valued but not required
- Programming Proficiency: Strong software engineering skills in Python and at least one systems language (C/C++, Rust, or similar), with experience building research prototypes and tooling
- Intellectual Curiosity: Demonstrated ability to quickly learn new domains, identify security-critical edge cases, and think adversarially about complex systems without needing an explicit application security background
- Communication Skills: Ability to distill complex AI/ML security research into clear, actionable recommendations for technical and executive audiences, and present findings to sophisticated clients who are themselves AI/ML experts
The base salary for this full-time position ranges from $175,000 to $300,000, excluding benefits and potential bonuses. Various factors influence our salary ranges, including the specific role, level of seniority, geographic location, and the nature of the employment contract. An individual's specific work location, unique skills, experience, and relevant educational background will determine the final offer within this range. The presented salary range encompasses the starting salaries for all U.S. locations. For a precise salary estimate tailored to your preferred location, please discuss it with your recruiter during the hiring process.
Trail of Bits, Inc. participates in E-Verify, the US federal electronic employment eligibility verification program. Learn more.
Benefits
Benefits, Perks & Wellness
Trail of Bits is our people, not a place. With over 100+ employees working from every time zone across the globe, our remote-first culture is built on autonomy and trust (and backed by smile-worthy benefits) for full-time employees:
Empowered Living:
- Competitive salary complemented by performance-based bonuses
- Fully company-paid insurance packages, including health, dental, vision, disability, and life
- A solid 401(k) plan with a 5% match of your base salary
- 20 days of paid vacation with flexibility for more, adhering to jurisdictional regulations
Nurturing New Beginnings:
- 4 months of parental leave to cherish the arrival of new family members
- Our team is global and remote-first. However, if you are interested in moving to NYC, we offer $10,000 in relocation assistance to support your transition
Work & Life Enrichment:
- $1,000 Working-from-Home stipend to create a comfortable and productive home office
- Annual $750 Learning & Development stipend for continuous personal and professional growth
- Company-sponsored all-team celebrations, including travel and accommodation, to foster community and recognize achievements
Community Impact:
- Philanthropic contribution matching up to $2,000 annually
Dedication to Diversity, Equity, Inclusion & Belonging (DEIB)
Trail of Bits is a community of innovators, risk-takers, and trailblazers who celebrate individual differences and recognize that unique perspectives make us stronger, smarter, and more successful. We actively seeks applicants who can bring a variety of experiences, perspectives, and backgrounds to the team. We provide equal employment opportunities to all employees and applicants for employment without regard to race, color, ancestry, national origin, gender, sex, pregnancy, pregnancy-related condition, sexual orientation, marital status, religion, age, disability, qualified handicap, gender identity, results of genetic testing, military status, veteran status, or any other characteristic protected by applicable law. Our team values diversity in experience and backgrounds—we do our best work when we create space for different voices and perspectives. Whatever unique experiences or skill sets you bring, we look forward to learning from each other.
