AI Security Engineer
Ampcus Inc · Gaithersburg, MD · 5 mo ago
HybridEngineeringFull-time
Job Responsibilities
- Supply Chain Security/Model Scanner (SaaS self-hosted hybrid deployment)
- Maintaining AZ's internal model scanning pipeline infrastructure and ensuring continued appropriate ingestion in compliance and governance systems (in the case of self-hosted deployment)
- Monitoring container releases and updates
- Reviewing output from the model scanner to ensure it is meeting requirements
- Setting organizational policy around "acceptable" risk in model vulnerabilities and providing internal guidance and overrides where necessary
- AI Attack Simulation (SaaS-only)
- Maintaining AIAS tasks that are implemented into application pipelines
- Adding AIAS tasks to new applications or running on-demand attack simulations
- Reviewing attack simulation results and determining application risk levels
- Setting organizational policy around "acceptable" risk in applications and providing remediation guidance to application teams
- Runtime Security/AIDR (self-hosted hybrid deployment)
- Maintaining the self-hosted HiddenLayer environment and ensuring availability for AZ applications (via the proposed AI/LLM Gateway)
- Ensuring continued appropriate ingestion of runtime logs and results in SIEMs and SoRs
- Monitoring container releases and updates
- Setting organizational policy around runtime behavior (blocking vs alerting) in applications
- Determining alerting thresholds and appropriate warning or escalation behavior for identified runtime misuse/attacks
- Ensuring that new applications are appropriately protected by HL Runtime Security (via the proposed AI/LLM Gateway)