Vol. 1 · Issue 7 July 6, 2026
FOWL AI
Future ofWork Lab
Some of the highest-paid AI workis trying to break it.
Companies are paying people to attack their own AI — and the best people doing it aren't engineers. Here's the red-teaming opportunity almost no one is talking about.
Subscribe free
Career Signals · AI Economy
Industry Signal
Weekly
The OpportunityHow red-teaming works and who's paying for it
The Skill GapWhy domain experts beat engineers at this
What's NextRegulation is turning this into a permanent market
If you read nothing else
Companies are paying strangers to intentionally break their AI — expose harmful outputs, bypass safety filters, and find failure modes before real users do. The highest earners aren't coders. They're lawyers, doctors, teachers, and researchers who understand the domains where AI is being deployed. This market is growing fast, and almost no one is talking about it.
🎙️ Nova's Signal
"The red-teaming economy is one of the quietest corners of AI income — and one of the fastest growing. The moment regulators started requiring it, it stopped being optional. Now it's a market. And most people who are perfectly positioned for it have no idea it exists."
Nova's call: Bullish. Domain experts have a rare window before this role gets saturated. Move now, not when it's obvious.
New here? FOWL AI tracks where the real AI income opportunities are hiding — not the hype, the signal. Every week we cover what's actually moving in the AI economy and what it means for your career.
Every major AI company has a problem. Their models are powerful, widely deployed, and capable of causing serious harm when they fail in the wrong context. A lawyer's AI gives dangerous legal advice. A medical chatbot misses a critical contraindication. An education tool coaches a student into something dangerous. These failures are real, they're expensive, and they happen before most users report them.

The solution companies have landed on is paying people to find the failures first. Not after launch. Before. That's red-teaming — deliberately trying to make AI systems break in ways that matter. And the counterintuitive finding is that the best people at this aren't the ones who built the models. They're the ones who know the real-world contexts where those models will fail.

This issue covers the full picture: what the work actually is, what it pays, why domain experts have a structural advantage, and how government regulation is turning red-teaming from a niche gig into a permanent, credentialled profession.
5 Developments This Week
01
Red-teaming is now a legitimate AI career path
AI red-teaming means deliberately trying to make AI systems fail — produce harmful outputs, hallucinate facts, bypass safety filters, or give dangerously wrong answers in high-stakes contexts. Anthropic, OpenAI, Google, and Meta all run formal red-team programs. Scale AI, Bugcrowd, and HackerOne have opened dedicated AI tracks. The work is expanding fast as AI gets deployed in healthcare, law, finance, and education — places where failure costs real money and real harm.
This is not a fringe security role. It's becoming a standard line item in AI product budgets, sitting alongside QA and compliance — and it's being staffed by people from every professional background imaginable.
Why it matters · A category of well-paid AI work that didn't exist three years ago is now actively hiring, and most qualified candidates don't know the job exists.
Who's affected · Knowledge workers in any professional field — law, medicine, finance, education, engineering — who understand how AI will be used in their domain.
The signal — When a job category moves from "fringe experiment" to "standard budget line," the early movers set the rates and build the reputations. That window is open right now.
02
The pay is not what people expect
Depending on the platform and the severity of what you find, red-teamers are earning $50–$200/hr. Some bug bounty payouts for AI vulnerabilities have hit five figures for a single finding. Platforms like Bugcrowd and HackerOne now pay cash bounties specifically for AI behavior issues — not just security vulnerabilities. Scale AI's Outlier platform runs red-team projects regularly, often without requiring prior experience, at rates that compete with senior freelance writing or mid-level consulting.
Why it matters · The pay floor for this work is already significantly above average knowledge-worker gig rates — and it's set before the market gets crowded.
The signal — Most people assume this requires a computer science background. It doesn't. It requires knowing how to think adversarially — and knowing your domain well enough to know where AI will confidently get it wrong.
03
Domain experts are beating engineers at this
A lawyer who can expose how an AI gives dangerous legal advice is more valuable in a red-team context than a developer who understands the model architecture. Same for doctors testing medical AI, accountants testing financial AI, teachers testing education tools. The best red-teamers aren't the ones who can read a transformer's attention weights — they're the ones who deeply understand the domain where the model will be deployed and can construct realistic, high-stakes failure scenarios.
Why it matters · Deep professional expertise is now a direct input into a growing AI income market — not a fallback when AI takes your job, but the thing that makes you better at this than engineers.
The signal — If you have domain expertise, you are not competing with AI. You are the person AI companies need to find out where their models fail at your level of knowledge.
04
Governments are formalizing it — and creating more demand
The EU AI Act, NIST's AI Risk Management Framework, and the UK AI Safety Institute are all pushing mandatory red-teaming requirements for high-risk AI deployments. These aren't guidelines — they're compliance requirements with enforcement teeth. Companies deploying AI in healthcare, financial services, hiring, and education will need to demonstrate that their systems have been formally tested for failure modes by qualified reviewers. That's a procurement category that doesn't exist yet at scale — but will.
Why it matters · Regulatory pressure converts an optional best practice into a required service, which means predictable, recurring demand — not just one-off gigs.
The signal — Red-teaming is about to follow the same arc as penetration testing: niche experiment in 2010, professional category by 2018, standard compliance requirement by 2022. It's roughly 2013 for AI red-teaming right now.
05
Most people have never heard of this — which is the opportunity
Red-teaming is one of the least-covered corners of the AI income landscape. It doesn't trend on LinkedIn. It's not in most "AI side hustle" roundups. The people doing it quietly are building reputations, setting rates, and accumulating case studies while everyone else is still debating whether AI will take their job. The low awareness relative to real demand is the exact dynamic that creates outsized early-mover advantage.
Why it matters · Windows like this close. When red-teaming becomes mainstream knowledge, the rates compress and the credential bar rises. The time to position is before that happens.
The signal — The question to ask yourself is not "is this real?" — it's "how long before everyone knows about it?" That's your runway.
📡 Signal & Chatter
What the data and community are saying this week.
Bugcrowd and HackerOne have opened dedicated AI vulnerability tracks. These are no longer bundled under general security — AI behavior bugs now have their own categories, their own bounty tiers, and their own reviewer pools.
Scale AI's Outlier platform runs paid red-team projects at $50–150/hr for non-technical testers. Many projects are open to applicants with domain expertise and no prior red-team experience. The application bar is lower than most people assume.
The UK AI Safety Institute paid participants in its first public red-team exercise. This signals a government-sponsored pipeline for trained, credentialled AI red-teamers — the early versions of a professional certification track.
OpenAI's bug bounty for AI behavior issues now pays up to $20,000 per finding. Not just for security vulnerabilities — for documented cases where the model behaves dangerously in real-world deployment contexts.
🔮 FOWL Prediction #7
"By end of 2027, 'AI Red Team Specialist' will appear as a formal job title at 30%+ of Fortune 500 companies — not as a security role, but as a compliance and product quality role."
The EU AI Act enforcement timeline starts in 2026. NIST AI RMF adoption is accelerating. Every company deploying high-risk AI will need documented evidence of adversarial testing by qualified reviewers. Red-teaming will follow the same institutionalisation path as pen testing — from contractor gig to internal team to required headcount. We'll score this in January 2028.
FOWL AI · July 2026 · We'll score this in January 2028.
✅ 3 Things to Do This Week
One for each type of reader — pick yours
01
If you have domain expertise (law, medicine, finance, education, any professional field)… Pick the top AI tool being used in your field right now. Spend 30 minutes trying to make it fail at something a professional would catch — a wrong answer, a dangerous recommendation, a confident hallucination. Document what you find: the prompt, the output, why it matters. That exercise is the beginning of a red-team portfolio.
02
If you're looking for paid AI work now… Search "red team" on Scale AI's Outlier platform and check Bugcrowd's AI track. The entry bar is lower than you think — many projects pay on application with no prior red-team experience required. Domain expertise is the credential they're actually looking for.
03
If you're building a long-term positioning play… Start documenting AI failures in your domain publicly — a LinkedIn post, a short write-up, even a thread. "I tested [tool] on [professional scenario] and here's what broke" is exactly the kind of content that gets you inbound from companies who need red-teamers. You're not just doing the work — you're signalling that you can do it.
🚀 From the Lab
Launch Lab — Building something?
Need help setting up a website, newsletter, digital products, or payments for your brand? We can help you build it — fast, clean, and ready to launch.
Reply with "LAUNCH" and let's chat.
🪪 Emerging Career Title
This week
AI Red Team Specialist
An AI Red Team Specialist is someone paid to find failure modes in AI systems before the general public does. The role involves designing adversarial prompts, constructing realistic high-stakes scenarios, documenting failure patterns, and in some cases writing formal reports that feed into product safety decisions or regulatory compliance filings.

At large AI labs (Anthropic, OpenAI, Google DeepMind), this is an internal role staffed by a mix of ML researchers and domain experts. At mid-size companies deploying AI products, it's increasingly a contracted service — hired per product launch or per compliance cycle. At platforms like Scale AI and Outlier, it's a freelance project model where specialists are matched to specific testing needs.

The title doesn't always exist yet. You'll see it listed as "AI Safety Evaluator," "Adversarial Testing Consultant," "AI QA Specialist," or just folded into "AI Evaluator" roles. But the function is converging into a recognizable profession, and the credential path is starting to take shape — with NIST frameworks, EU AI Act compliance requirements, and emerging certification programs beginning to define what "qualified" means in this space.

The range of people doing this work is wider than most expect: former lawyers testing legal AI, ex-teachers testing education tools, healthcare professionals testing clinical decision support systems, journalists testing news summarisation products. Domain knowledge is the differentiator — not technical background.
How to position for this now: Don't wait for the job title to appear on LinkedIn. Start doing the work in your domain and documenting the results publicly. One well-written post about an AI failure you found in your professional field is worth more than a certification that doesn't exist yet. The credential will come — but the reputation starts now.
The window on this is real but not permanent. Red-teaming is following the same arc as bug bounties in cybersecurity — fringe hobby in 2010, professional category by 2018, standard compliance line item by 2022. AI red-teaming is somewhere around 2013 right now. The people who move early will have case studies, reputations, and rates set before the market crowds.

The question worth sitting with: what do you know professionally that an AI would get confidently wrong? Whatever your answer is — that's not just expertise. It's a service that companies are actively trying to buy.
"The most valuable AI skill of 2026isn't building it. It's knowing where it breaks."
💬 One question — reply and tell us
Have you ever tried to make an AI say something it shouldn't — just to see if you could? That instinct is worth money right now. Hit reply and tell us what field you're in. We want to see if there's a red-teaming angle here for you specifically.

Hit reply. We read every one and it shapes what we cover next.
Share this issue