Principal AI Security Engineer
Role Summary
We are seeking an AI Security Engineer to own the security of how we adopt and integrate third-party artificial intelligence and large language model (LLM) services across the enterprise.
Key Responsibilities And Deliverables
Secure AI Integration
Define and maintain secure integration patterns for third-party AI and LLM services, including API security, authentication, secrets management, and data-in-transit protections.
Evaluate the security posture of AI service providers as part of third-party and vendor risk processes.
Develop guidance for the secure adoption of agentic AI tools and multi-agent integrations, including scope containment and human oversight controls.
AI Security Governance
Build and maintain an AI security risk framework aligned to the organization's regulatory obligations: GLBA, PCI DSS 4.0.1, DORA ICT third-party risk, and NYDFS 23 NYCRR 500.
Establish governance controls for enterprise AI adoption, including standards for approved AI services, data handling requirements, and shadow AI detection.
Align internal AI security controls to emerging frameworks — NIST AI RMF and ISO/IEC 42001 — and advise on the organization's readiness as regulatory expectations evolve.
Threat Identification & Engineering Controls
Identify and mitigate AI-specific risks including prompt injection, model manipulation, data leakage, adversarial inputs, and AI-enabled social engineering.
Partner with security operations to build detection and response capabilities for AI-integrated systems.
Monitor the evolving AI threat landscape and translate emerging risks into practical engineering and governance responses.
Cross-Functional Partnership
Work with engineering, product, and cloud platform teams to embed security-by-design into AI-enabled applications and integrations.
Communicate AI security risks and recommendations clearly to both technical peers and non-technical leadership.
Contribute to security awareness and internal education on AI risk for engineering and business teams.
Requirements
Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical discipline or equivalent practical experience.
7+ years of experience in security engineering, application security, cloud security, or a closely related discipline.
Hands-on experience securing cloud-native environments and API-based integrations (AWS, Azure, or GCP).
Solid understanding of authentication, authorization, secrets management, and data protection in distributed systems.
Ability to assess technical risk and translate findings into actionable engineering controls and governance language.
Working knowledge of AI/ML security risks relevant to an enterprise consumer context: prompt injection, data leakage, insecure API integration, shadow AI, model output manipulation, and AI supply chain risk.
Familiarity with OWASP LLM Top 10 and MITRE ATLAS as applied threat frameworks.
Experience with or meaningful exposure to securing integrations with LLM service providers (e.g., Azure OpenAI, AWS Bedrock, Google Vertex AI, Anthropic, OpenAI).
Demonstrated engagement with AI security as an area of active professional focus — through applied work, research, certifications, or equivalent.
Security Foundations (any of the following)
CISSP — Certified Information Systems Security Professional
CCSP — Certified Cloud Security Professional
Cloud platform security certification: AWS Security Specialty, AZ-500 (Azure), or Google Professional Cloud Security Engineer
ISSAP — Information Systems Security Architecture Professional
Preferred
Familiarity with at least one of the following as it applies to AI or third-party technology risk:
GLBA, PCI DSS 4.0.1, NYDFS 23 NYCRR 500, DORA
Experience working in regulated financial services or an equivalently controlled environment is a plus, not a requirement.
CAISP — Certified AI Security Professional (Practical DevSecOps)
CAISS — Certified AI Security Specialist (Ampcus Cyber / ISACA chapters)
AIGP — Artificial Intelligence Governance Professional (IAPP)
Pay
Negotiable based on experience and qualifications.
Schedule
Hybrid in Atlanta Office