Sr. Staff Software Engineer, 0DIN

Why Mozilla?

Mozilla Corporation is the non-profit-backed technology company that has shaped the internet for the better over the last 25 years. We make pioneering brands like Firefox, the privacy-minded web browser, and Pocket, a service for keeping up with the best content online. Now, with more than 225 million people around the world using our products each month, we’re shaping the next 25 years of technology and helping to reclaim an internet built for people, not companies. Our work focuses on diverse areas including AI, social media, security and more. And we’re doing this while never losing our focus on our core mission – to make the internet better for people. 

The Mozilla Corporation is wholly owned by the non-profit 501(c) Mozilla Foundation. This means we aren’t beholden to any shareholders — only to our mission. Along with thousands of volunteer contributors and collaborators all over the world, Mozillians design, build and distribute open-source software that enables people to enjoy the internet on their terms. 

About this team and role:

In the rapidly advancing world of technology, GenAI and deep learning models are transforming our digital interactions. 0DIN, a next-generation bug bounty program, is here to secure these AI services that are becoming essential to our daily lives.

0DIN's mission is simple: identify, fix and prevent security flaws in popular AI services. By rewarding security researchers, 0DIN aims to uncover new types of vulnerabilities in GenAI and provide those learnings to the AI builders of the future.

The rise in AI adoption, exemplified by platforms like ChatGPT, highlights the urgent need for security. 0din fosters a collaborative environment where innovation in security is both recognized and rewarded, ensuring these technologies remain safe and trustworthy.

0DIN is more than just an initiative; it's a testament to Mozilla's commitment to digital safety and trust.

• System Design & Development
• Build ultra-low-latency request/response enforcement pipelines capable of 10k+ Requests Per Second (RPS) per node.
• Implement real-time input/output validation, multi-turn monitoring, and adversarial pattern detection.
• Engineer flexible deployment options, including reverse proxy, sidecar, SDK, edge, and on-premises.
• Evaluate and recommend open source and custom software solutions.
• Security & Detection
• Integrate real-world threat intelligence into adaptive rules and signatures.
• Develop semantic attack detection, evasion handling, and contextual monitoring.
• Enable configurable enforcement actions: block, redact, replace, or log-only.
• Enterprise Integration
• Deliver compliance-ready logging, alerting, and severity scoring pipelines.
• Support integrations with SIEM/SOAR, SOC tools, and regulatory frameworks (HIPAA, PCI-DSS, GDPR, SOC2, ISO, NIST).
• Provide SDKs and APIs for rapid developer adoption.
• Performance & Reliability
• Achieve P95 <15ms latency, 99.99% availability, and linear scalability under load.
• Build distributed infrastructure optimized for edge and cloud environments.
• Collaboration & Leadership
• Partner with security researchers and product leaders to define the roadmap.
• Mentor engineers and help grow a high-performing technical team.

• 15+ years proven experience in backend systems and distributed infrastructure.
• Deep understanding of cloud-native deployments (Kubernetes, Helm, Terraform, multi-cloud).
• Strong programming skills in at least two of: Python, Go, Rust, Ruby or Java.
• Experience with inline enforcement systems, firewalls, or high-performance APIs.
• Experience in Security Product Development
• Familiarity with AI/ML security challenges (adversarial ML, content filtering, prompt injection).
• Expertise in leveraging AI tools in the development workflow.
• Nice to have:
  • Contributions to open-source AI safety or security projects.
  • Experience with streaming protocols (gRPC, WebSocket, SSE) and edge/CDN deployments.
  • Background in adversarial ML research, red-teaming, or compliance-focused security.
• What success looks like:
  • 90 days: Deliver MVP prototype with real-time detection and <50ms latency.
  • 6 months: Reach enterprise readiness with multi-turn detection, policy creation, and SDKs.
  • 12 months: Achieve industry-leading latency, global adoption, and predictive defenses.
• Commitment to our values:
  • Welcoming differences
  • Being relationship-minded
  • Practicing responsible participation
  • Having grit

What you’ll get:

• Generous performance-based bonus plans to all eligible employees - we share in our success as one team
• Rich medical, dental, and vision coverage
• Generous retirement contributions with 100% immediate vesting (regardless of whether you contribute)
• Quarterly all-company wellness days where everyone takes a pause together
• Country specific holidays plus a day off for your birthday
• One-time home office stipend
• Annual professional development budget
• Quarterly well-being stipend
• Considerable paid parental leave
• Employee referral bonus program
• Other benefits (life/AD&D, disability, EAP, etc. - varies by country)

About Mozilla 

Mozilla exists to build the Internet as a public resource accessible to all because we believe that open and free is better than closed and controlled. When you work at Mozilla, you give yourself a chance to make a difference in the lives of Web users everywhere. And you give us a chance to make a difference in your life every single day. Join us to work on the Web as the platform and help create more opportunity and innovation for everyone online.

Commitment to diversity, equity, inclusion, and belonging

Mozilla understands that valuing diverse creative practices and forms of knowledge are crucial to and enrich the company’s core mission.  We encourage applications from everyone, including members of all equity-seeking communities, such as (but certainly not limited to) women, racialized and Indigenous persons, persons with disabilities, persons of all sexual orientations, gender identities, and expressions.

We will ensure that qualified individuals with disabilities are provided reasonable accommodations to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment, as appropriate. Please contact us at hiringaccommodation@mozilla.com to request accommodation.

We are an equal opportunity employer. We do not discriminate on the basis of race (including hairstyle and texture), religion (including religious grooming and dress practices), gender, gender identity, gender expression, color, national origin, pregnancy, ancestry, domestic partner status, disability, sexual orientation, age, genetic predisposition, medical condition, marital status, citizenship status, military or veteran status, or any other basis covered by applicable laws.  Mozilla will not tolerate discrimination or harassment based on any of these characteristics or any other unlawful behavior, conduct, or purpose.

Group: C

#LI-REMOTE

Req ID: R2965