Principal AI Security Automation Engineer
About the role
At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.
Responsibilities
- Design and implement automation workflows supporting AI-powered vulnerability discovery and remediation.
- Develop integrations between AI scanning platforms, security tools and SDLC platforms.
- Build and maintain findings ingestion, normalization and enrichment pipelines.
- Integrate AI scanning outputs into ASPM, vulnerability management and developer workflows.
- Develop automated triage, prioritization and remediation orchestration capabilities.
- Create dashboards, metrics and reporting capabilities supporting security decision-making.
- Create APIs and automation services connecting security tooling across the enterprise.
- Partner with AppSec, Vulnerability Operations and Development teams to operationalize findings.
- Improve scanning efficiency through workflow optimization and intelligent automation.
- Support secure deployment and operation of AI-based security capabilities.
- Contribute to governance, auditability and operational controls for AI-driven security processes.
- Evaluate emerging AI security technologies and identify opportunities for automation.
Qualifications
- Minimum of 8 years of related experience
- Bachelor's degree preferred and/or equivalent experience
- Talents Needed For Success:
- 6+ years of software engineering, DevSecOps, Application Security, or security automation experience
- Strong hands-on development experience in Python, with the ability to develop production-grade security tooling, automation frameworks, and integrations
- Experience designing and operating application security tooling including SAST, DAST, SCA, secrets scanning, ASPM, or vulnerability management platforms
- Experience integrating security controls into CI/CD pipelines and developer workflows
- Strong understanding of secure software development practices, OWASP Top 10, secure coding, threat modelling, and vulnerability remediation
- Experience developing API integrations using REST APIs, SDKs, and event-driven architectures
- Experience working with AI/LLM platforms such as Claude, OpenAI, Bedrock, or similar
- Experience building automated workflows for vulnerability discovery, triage, prioritization, and remediation
- Familiarity with AWS security services, IAM, Security Hub, GuardDuty, and cloud-native security controls
- Experience with CI/CD and SDLC tooling including Git, Bitbucket, Jira, Jenkins, GitHub Actions, Maven, and related platforms
- Understanding of AI security risks including prompt injection, model abuse, AI supply chain security, and agent security
- Experience working in Agile delivery environments
Preferred Qualifications
- CISSP, TAISE, OSCP, CSSLP, or similar certifications
- Experience with Apiiro, Veracode, SonarQube, Semgrep, Burp Suite, or comparable security platforms
- Experience implementing policy-as-code or security guardrails within engineering platforms
- Experience supporting enterprise-scale vulnerability management programmers
Benefits
Competitive compensation, including base pay and annual incentive
Comprehensive health and life insurance and well-being benefits, based on location
Pension / Retirement benefits
Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
Pay and Schedule
The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations.
DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).