Sr. Staff Software Engineer, 0DIN at Mozilla

, , United States -

Full Time

Start Date

Immediate

Expiry Date

07 Jan, 26

Salary

283000.0

Posted On

09 Oct, 25

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Backend Systems, Distributed Infrastructure, Cloud-Native Deployments, Kubernetes, Helm, Terraform, Python, Go, Rust, Ruby, Java, Security Product Development, AI/ML Security Challenges, Adversarial ML, Content Filtering, Prompt Injection

Industry

Software Development

Description

Why Mozilla? Mozilla Corporation is the non-profit-backed technology company that has shaped the internet for the better over the last 25 years. We make pioneering brands like Firefox, the privacy-minded web browser, and Pocket, a service for keeping up with the best content online. Now, with more than 225 million people around the world using our products each month, we’re shaping the next 25 years of technology and helping to reclaim an internet built for people, not companies. Our work focuses on diverse areas including AI, social media, security and more. And we’re doing this while never losing our focus on our core mission – to make the internet better for people. The Mozilla Corporation is wholly owned by the non-profit 501(c) Mozilla Foundation. This means we aren’t beholden to any shareholders — only to our mission. Along with thousands of volunteer contributors and collaborators all over the world, Mozillians design, build and distribute open-source software that enables people to enjoy the internet on their terms. About this team and role: In the rapidly advancing world of technology, GenAI and deep learning models are transforming our digital interactions. 0DIN, a next-generation bug bounty program, is here to secure these AI services that are becoming essential to our daily lives. 0DIN's mission is simple: identify, fix and prevent security flaws in popular AI services. By rewarding security researchers, 0DIN aims to uncover new types of vulnerabilities in GenAI and provide those learnings to the AI builders of the future. The rise in AI adoption, exemplified by platforms like ChatGPT, highlights the urgent need for security. 0din fosters a collaborative environment where innovation in security is both recognized and rewarded, ensuring these technologies remain safe and trustworthy. 0DIN is more than just an initiative; it's a testament to Mozilla's commitment to digital safety and trust. What you’ll do: System Design & Development Build ultra-low-latency request/response enforcement pipelines capable of 10k+ Requests Per Second (RPS) per node. Implement real-time input/output validation, multi-turn monitoring, and adversarial pattern detection. Engineer flexible deployment options, including reverse proxy, sidecar, SDK, edge, and on-premises. Evaluate and recommend open source and custom software solutions. Security & Detection Integrate real-world threat intelligence into adaptive rules and signatures. Develop semantic attack detection, evasion handling, and contextual monitoring. Enable configurable enforcement actions: block, redact, replace, or log-only. Enterprise Integration Deliver compliance-ready logging, alerting, and severity scoring pipelines. Support integrations with SIEM/SOAR, SOC tools, and regulatory frameworks (HIPAA, PCI-DSS, GDPR, SOC2, ISO, NIST). Provide SDKs and APIs for rapid developer adoption. Performance & Reliability Achieve P95

Responsibilities

The role involves designing and developing ultra-low-latency request/response enforcement pipelines and integrating real-world threat intelligence into security systems. Additionally, the engineer will collaborate with security researchers and product leaders to define the roadmap and mentor engineers.