Our customer is seeking an experienced AI Application Security Engineer to help build and mature security capabilities across modern cloud applications and AI-enabled solutions.
This is a direct hire role!
This is an excellent opportunity for someone who enjoys solving technical security challenges through engineering rather than simply identifying vulnerabilities. You’ll work closely with software engineers, cloud teams, and architecture leaders to integrate security throughout the software development lifecycle while helping shape emerging AI security practices.
The ideal candidate has a software development background, enjoys automation, and is passionate about securing cloud-native applications, AI platforms, and modern development environments.
Key Responsibilities:
- Partner with software engineering teams to integrate security throughout the software development lifecycle (SDLC) and AI development lifecycle.
- Design, implement, and enhance secure application and AI architecture patterns in collaboration with technical leadership.
- Evaluate, configure, and optimize application security tools, including:
- Static Application Security Testing (SAST)
- Dynamic Application Security Testing (DAST)
- Software Composition Analysis (SCA)
- API Security
- Mobile application security
- AI security and red team testing
- Build and automate security capabilities using scripting languages, cloud services, and CI/CD pipelines.
- Integrate and maintain application security tooling, runtime monitoring, governance controls, and security posture management platforms.
- Assess, prioritize, and validate vulnerabilities while partnering with development teams to implement practical remediation strategies.
- Perform security reviews of AI platforms, models, agents, integrations, and emerging AI technologies.
- Develop secure coding standards, implementation guidance, and technical documentation for development teams.
- Research emerging cybersecurity threats, particularly those impacting AI systems, and incorporate appropriate security controls.
- Mentor engineers and contribute to the continued maturity of application security practices across the organization.
Required:
- Professional experience in application security, software security, or secure software engineering.
- Prior software development experience, ideally with languages such as C#, Python, or similar object-oriented languages.
- Strong understanding of:
- Secure software development
- Threat modeling
- Secure architecture principles
- Vulnerability management
- Experience working within cloud environments, preferably AWS.
- Familiarity with modern CI/CD pipelines and DevSecOps practices.
- Experience collaborating directly with software engineering teams.
- Strong analytical, troubleshooting, and problem-solving abilities.
- Excellent written and verbal communication skills with both technical and business audiences.
- Ability to manage multiple priorities in a fast-paced environment.
The successful candidate will work with technologies that may include:
- AWS cloud services
- Azure (limited workloads)
- GitHub and Azure DevOps
- CI/CD automation
- AI platforms and large language models
- Application security testing tools
- Cloud and application security monitoring solutions