About the Role
As AI systems—especially agentic and autonomous AI—become deeply embedded in our products and internal platforms, the security model must evolve. Traditional application security alone is no longer sufficient. We are looking for an AI Red Team Engineer to help us proactively identify, understand, and mitigate AI-native and agent-specific security risks before they reach production.
In this role, you will build and execute adversarial red-teaming exercises against AI models and AI agents, focusing on how they can be manipulated into unsafe, unintended, or harmful behavior. You will work closely with AI platform teams, product engineers, and security partners to stress-test agent logic, tool usage, memory, and autonomy—and translate findings into concrete guardrails and defenses.
This role is ideal for someone who enjoys thinking like an attacker, understands modern AI systems, and wants to work at the intersection of security, AI, and real-world impact.
---- What the Candidate Will Do ----
This role sits at the intersection of offensive security and AI engineering. You will not be limited to traditional penetration testing; instead, you will focus on behavioral, logical, and contextual attacks that cause AI systems to fail in subtle but dangerous ways—often without exploiting classic vulnerabilities. Success in this role means uncovering “unknown unknowns,” clearly articulating risk, and helping teams build safer AI systems by design.
Design and execute AI red-teaming exercises against LLMs and AI agents, including:
- prompt injection (direct & indirect)
- jailbreaking and policy bypass
- model and tool poisoning
- memory and context poisoning
- behavioral drift and unsafe autonomy
- tool misuse and emergent privilege escalation
Analyze agent workflows, logic, and tool graphs to identify systemic security weaknesses beyond prompt-level attacks.
Develop reusable adversarial test cases, attack libraries, and red-team playbooks for AI systems.
Collaborate with AI platform and product teams to translate red-team findings into actionable mitigations, guardrails, and design changes.
---- Basic Qualifications ----
- 3+ years of experience in security engineering, offensive security, red teaming, or AI security.
- Hands-on experience red-teaming AI models or AI agents, including testing for prompt injection, jailbreaks, unsafe behavior, Excessive agency, Model DoS.
- Strong understanding of security fundamentals (threat modeling, secure design, least privilege, defense in depth).
- Ability to clearly document findings and communicate risk to both technical and non-technical stakeholders
- Proficiency in at least one programming language (e.g., Python, Go, Java, or similar)
---- Preferred Qualifications ----
- Familiarity with AI security tools and frameworks (e.g., PyRIT, AgentDojo, Promptfoo, custom harnesses).
- Good understanding of GenAI and LLM architectures, including: embeddings, RAG, or agent frameworks.
- Hands-on experience executing AI Red Teaming exercises, including prompt injection/jailbreaking, unsafe behavior/behavioral drift, model/tool poisoning.
- Offensive security / penetration testing background (e.g., red team, bug bounty, exploit development).
For New York, NY-based roles: The base salary range for this role is USD$171,000 per year - USD$190,000 per year.
For San Francisco, CA-based roles: The base salary range for this role is USD$171,000 per year - USD$190,000 per year.
For Seattle, WA-based roles: The base salary range for this role is USD$171,000 per year - USD$190,000 per year.
For Sunnyvale, CA-based roles: The base salary range for this role is USD$171,000 per year - USD$190,000 per year.
For all US locations, you will be eligible to participate in Uber's bonus program, and may be offered an equity award & other types of comp. All full-time employees are eligible to participate in a 401(k) plan. You will also be eligible for various benefits. More details can be found at the following link https://jobs.uber.com/en/benefits.
Uber's mission is to reimagine the way the world moves for the better. Here, bold ideas create real-world impact, challenges drive growth, and speed fuels progress. What moves us, moves the world - let's move it forward, together.
Uber is proud to be an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you have a disability or special need that requires accommodation, please let us know by completing this form.
Offices continue to be central to collaboration and Uber's cultural identity. Unless formally approved to work fully remotely, Uber expects employees to spend at least half of their work time in their assigned office. For certain roles, such as those based at green-light hubs, employees are expected to be in-office for 100% of their time. Please speak with your recruiter to better understand in-office expectations for this role.