Senior Security Engineer, AI Model and Application

Accountabilities:

• Design, implement, and maintain security controls across the full AI/ML lifecycle, including data validation, training pipelines, model registries, and production monitoring

• Develop and maintain AI/ML threat models covering risks such as prompt injection, data leakage, model evasion, poisoning, and agent manipulation

• Lead red teaming and adversarial testing efforts for LLMs and agent-based systems, identifying vulnerabilities and driving remediation with engineering teams

• Partner with ML and platform engineers to embed security into model development, deployment pipelines, and RAG/agentic architectures

• Define policies for secure prompt handling, output filtering, sensitive data detection, and AI system logging for compliance and investigation

• Integrate AI security telemetry into SIEM and SOC workflows and define incident response runbooks for AI-related threats

• Create and maintain security documentation including threat models, SOPs, data flow diagrams, and architectural security standards

• Stay current on AI security frameworks and emerging threats (e.g., NIST AI RMF, OWASP LLM Top 10, MITRE ATLAS) and translate insights into internal controls

• Collaborate cross-functionally with engineering, product, legal, and compliance teams to guide secure AI system design

• Mentor junior security engineers and support cross-functional security initiatives and special projects

Requirements:

• Bachelor’s degree in Computer Science, Information Security, Engineering, or related field with 7+ years of relevant experience

• 5+ years of experience in application security, product security, or offensive security with strong hands-on threat modeling experience

• Demonstrated experience testing or attacking AI/ML or LLM systems (e.g., prompt injection, adversarial examples, model abuse, data exfiltration)

• Strong understanding of web and API security concepts (OWASP, authentication, authorization, abuse prevention)

• Experience working with AI-specific security frameworks such as NIST AI RMF, OWASP LLM Top 10, or MITRE ATLAS

• Strong Python skills and familiarity with ML/LLM frameworks (e.g., LangChain, Hugging Face, OpenAI APIs)

• Experience with cloud environments and security monitoring tools is highly valued

• Strong communication skills with ability to translate technical risks into actionable guidance for non-security stakeholders

• Preferred: experience with RAG pipelines, vector databases, or AI agent frameworks and their security risks

• Preferred: experience in regulated environments with compliance requirements such as SOC 2 or ISO 27001

Benefits:

• Competitive salary based on experience and geographic location

• Eligibility for discretionary bonus and equity awards

• Comprehensive health, dental, and vision insurance plans

• Flexible work arrangement (remote or on-site depending on location)

• 401(k) retirement plan with company match

• Paid time off including holidays, vacation, and personal days depending on employment type

• Health and wellness programs, including EAP support and flexible spending accounts

• Additional perks such as life insurance, disability coverage, legal services, identity protection, and employee discounts

• Strong learning environment with opportunities to work on cutting-edge AI security challenges.

How Jobgether works:
We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.
We appreciate your interest and wish you the best!
 Why Apply Through Jobgether?

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1