Principal Product Manager, AI Model Security
Listed on 2026-06-27
-
IT/Tech
AI Evaluation, Cybersecurity, AI Engineer (Applied/Software)
Microsoft Superintelligence team's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
This role is part of Microsoft AI's Superintelligence Team. The MAIST is a startup-like team inside Microsoft AI, created to push the boundaries of AI toward Humanist Superintelligence — ultra‑capable systems that remain controllable, safety‑aligned, and anchored to human values. Our mission is to create AI that amplifies human potential while ensuring humanity remains firmly in control. We aim to deliver breakthroughs that benefit society — advancing science, education, and global well‑being.
We are hiring a Product Manager to own AI model security — the discipline of making our frontier models resilient against adversarial attack and purpose‑built for security practitioners. This role has a dual mandate: (1) harden our models against the full spectrum of LLM security threats — prompt injection, data exfiltration, jail breaking, training data extraction, zero‑day exploit generation, model poisoning, and agentic workflow exploitation — and (2) partner closely with Microsoft Security product teams (Azure Security, Security Copilot) to ensure our models deliver best‑in‑class capabilities for real‑world security workflows.
This is not a safety role (we have one); it is a security role where you think like an attacker, understand the OWASP LLM Top 10, and bring product judgment to hard trade‑offs between model capability and attack surface. You also understand what security analysts and incident responders need from AI and work backwards from their workflows to define model training priorities, evaluation benchmarks, and product requirements.
You will work shoulder‑to‑shoulder with model researchers, engineers, and red teamers. You will personally build evaluation frameworks, define security benchmarks, and drive decisions about what to ship and what to hold. This is a small team with high ownership — you will see your work in production and be accountable for outcomes.
Responsibilities- Own the model security roadmap: Define and prioritize the security hardening strategy for our frontier models across the full OWASP LLM threat surface.
- Drive zero‑day and exploit defense: Work with researchers to evaluate and mitigate the risk of models being used to generate zero‑day exploits, malware, or novel attack vectors.
- Build and scale red‑teaming frameworks: Design, run, and iterate adversarial testing programs—both automated and human‑driven—to continuously probe model vulnerabilities.
- Partner with Microsoft Security product teams: Translate product requirements into model training priorities and ensure our models are purpose‑built for threat detection, incident triage, vulnerability assessment, log analysis, and compliance reasoning.
- Define security‑specific model evaluations: Build benchmark suites and evaluation frameworks that measure real‑world security usefulness.
- Shape security policy and launch readiness: Establish clear security criteria for model launches and own the security dimension of go/no‑go decisions.
- Stay at the frontier: Track the rapidly evolving LLM security landscape and translate new knowledge into actionable product priorities.
- Influence model training and architecture: Partner with researchers and engineers to embed security considerations into model training, fine‑tuning, RLHF, and post‑training safeguards.
Required Qualifications
- Bachelor's Degree AND 5+ years experience in product management, security engineering, or software development OR equivalent experience.
- Hand‑on experience with AI/ML systems — built, evaluated, or shipped ML‑powered products or security tools.
- Deep familiarity with LLM security threats: prompt injection, jail breaking, data exfiltration, adversarial attacks on generative models.
- Experience defining product requirements and driving decisions in partnership…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).