Sub Team Lead - Red Team (Control)

Team Description   

Risks from misaligned AI systems will grow in importance as AI systems become more capable, autonomous, and integrated into society. AI control measures seek to detect, constrain, and/or counteract potentially misaligned AI models; we expect these measures to become increasingly important in the face of capable AI systems that may be unreliable, deceptive, or misaligned.  

The Control Red Team partners with leading frontier AI companies to stress-test control measures. The team uses techniques from adversarial ML to develop algorithms to find a range of failures in control measures, which are then used to assess strengthen control measures. These partnerships allow us to directly influence vital control measures, while our position in government lets us bring our understanding of the state of control measures to broader government as they make critical deployment, research, and policy decisions.  

The Control Red Team grew out of our previous work on control, including a library for running AI control experiments, stress-testing asynchronous monitors, chain-of-thought monitorability, and evaluating control for LLM agents. The Control Red Team additionally draws from expertise within our broader Red Team, which has world-leading expertise in human-led attacks against AI systems.  

 

Role Description   

We're looking for an experienced researcher to lead the Control sub-team, driving its research agenda and managing a team of talented research scientists. The ideal candidate combines deep technical expertise in AI control and alignment with the leadership ability to set direction, develop people, and represent the team's work to senior stakeholders inside and outside government. 

As Sub Team Lead, you will shape the Control sub-team's strategy and priorities with the Red Team lead, mentor junior and senior researchers, and serve as a key point of contact with frontier AI labs, UK government officials, and international partners. You'll work closely with the broader Red Team leadership – currently led by Xander Davies and advised by Geoffrey Irving and Yarin Gal – and collaborate with external teams including Redwood Research, Google DeepMind, Anthropic, and OpenAI. 

Representative projects you might work on   

• Designing, building, running and evaluating methods to automatically attack and evaluate control protocols, such as LLM-automated attacking and optimisation approaches.   

• Building and maintaining infrastructure and benchmarks for AI control experiments, including tools for evaluating the robustness of control measures across diverse threat models. 

• Performing adversarial testing of frontier AI system control protocols and produce reports that are impactful and action-guiding for deployers. 

 

What we’re looking for   

In accordance with the Civil Service Commission rules, the following list contains all selection criteria for the interview process.  

The experiences listed below should be interpreted as examples of the expertise we're looking for, as opposed to a list of everything we expect to find in one applicant:  

You may be a good fit if you have:    

• Hands-on research experience with large language models (LLMs) - such as training, fine-tuning, evaluation, or safety research.   

• A demonstrated track record of peer-reviewed publications in top-tier ML conferences or journals.   

• Ability and experience writing clean, documented research code for machine learning experiments, including experience with ML frameworks like PyTorch or evaluation frameworks like Inspect.   

• A sense of mission, urgency, responsibility for success.   

• An ability to bring your own research ideas and work in a self-directed way, while also collaborating effectively and prioritising team efforts over extensive solo work.   

Strong candidates may also have:    

• Experience working on AI alignment or AI control. 

• Experience working on adversarial robustness, other areas of AI security, or red teaming against any kind of system.   

• Extensive experience writing production quality code.   

• Desire to and experience with improving our team through mentoring and feedback.   

• Experience designing, shipping, and maintaining complex technical products.   

   

What We Offer 

Impact you couldn't have anywhere else 

• Incredibly talented, mission-driven and supportive colleagues. 

• Direct influence on how frontier AI is governed and deployed globally. 

• Work with the Prime Minister’s AI Advisor and leading AI companies. 

• Opportunity to shape the first & best-resourced public-interest research team focused on AI security. 

Resources & access 

• Pre-release access to multiple frontier models and ample compute. 

• Extensive operational support so you can focus on research and ship quickly. 

• Work with experts across national security, policy, AI research and adjacent sciences. 

Growth & autonomy 

• If you’re talented and driven, you’ll own important problems early. 

• 5 days off and annual stipends for learning and development, and funding for conferences and external collaborations. 

• Freedom to pursue research bets without product pressure. 

• Opportunities to publish and collaborate externally. 

Life & family* 

• Modern central London office (cafes, food court, gym), or where applicable, option to work in similar government offices in Birmingham, Cardiff, Darlington, Edinburgh, Salford or Bristol. 

• Hybrid working, flexibility for occasional remote work abroad and stipends for work-from-home equipment. 

• At least 25 days’ annual leave, 8 public holidays, extra team-wide breaks and 3 days off for volunteering. 

• Generous paid parental leave (36 weeks of UK statutory leave shared between parents + 3 extra paid weeks + option for additional unpaid time). 

• On top of your salary, we contribute 28.97% of your base salary to your pension. 

• Discounts and benefits for cycling to work, donations and retail/gyms. 
   

*These benefits apply to direct employees. Benefits may differ for individuals joining through other employment arrangements such as secondments. 

 

Salary  

Annual salary is benchmarked to role scope and relevant experience. Most offers land between £105,000 and £145,000 made up of a base salary plus a technical allowance (take-home salary = base + technical allowance). An additional 28.97% employer pension contribution is paid on the base salary.

This role sits outside of the DDaT pay framework given the scope of this role requires in depth technical expertise in frontier AI safety, robustness and advanced AI architectures. 

The salary ranges for this position are as follows:   

• Level 5: £105,000–£115,000 (Base £55,805 + Technical Allowance £49,195–£59,195)  

• Level 6: £125,000–£135,000 (Base £68,770 + Technical Allowance £56,230–£66,230)  

• Level 7: £145,000 (Base £68,770 + Technical Allowance £76,230)  

 

Selection process     

The interview process may vary candidate to candidate, however, you should expect a typical process to include some technical proficiency tests, discussions with a cross-section of our team at AISI (including non-technical staff), conversations with your team lead. The process will culminate in a conversation with members of the senior leadership team here at AISI.     

Candidates should expect to go through some or all of the following stages once an application has been submitted:     

• Initial assessment  

• Initial screening call    

• Research interview  

• Technical assessment   

• Behavioural interview  

• Final interview with members of the senior leadership team