Jobs · Information Technology · Georgia

Principal AI Security Engineer

Candescent · Atlanta, GA · 2 wk ago
Information TechnologyFull-time

Role Summary

We are seeking an AI Security Engineer to own the security of how we adopt and integrate third-party artificial intelligence and large language model (LLM) services across the enterprise.

Key Responsibilities And Deliverables

  • Secure AI Integration

    • Define and maintain secure integration patterns for third-party AI and LLM services, including API security, authentication, secrets management, and data-in-transit protections.

    • Evaluate the security posture of AI service providers as part of third-party and vendor risk processes.

    • Develop guidance for the secure adoption of agentic AI tools and multi-agent integrations, including scope containment and human oversight controls.

  • AI Security Governance

    • Build and maintain an AI security risk framework aligned to the organization's regulatory obligations: GLBA, PCI DSS 4.0.1, DORA ICT third-party risk, and NYDFS 23 NYCRR 500.

    • Establish governance controls for enterprise AI adoption, including standards for approved AI services, data handling requirements, and shadow AI detection.

    • Align internal AI security controls to emerging frameworks — NIST AI RMF and ISO/IEC 42001 — and advise on the organization's readiness as regulatory expectations evolve.

  • Threat Identification & Engineering Controls

    • Identify and mitigate AI-specific risks including prompt injection, model manipulation, data leakage, adversarial inputs, and AI-enabled social engineering.

    • Partner with security operations to build detection and response capabilities for AI-integrated systems.

    • Monitor the evolving AI threat landscape and translate emerging risks into practical engineering and governance responses.

  • Cross-Functional Partnership

    • Work with engineering, product, and cloud platform teams to embed security-by-design into AI-enabled applications and integrations.

    • Communicate AI security risks and recommendations clearly to both technical peers and non-technical leadership.

    • Contribute to security awareness and internal education on AI risk for engineering and business teams.

Requirements

  • Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical discipline or equivalent practical experience.

  • 7+ years of experience in security engineering, application security, cloud security, or a closely related discipline.

  • Hands-on experience securing cloud-native environments and API-based integrations (AWS, Azure, or GCP).

  • Solid understanding of authentication, authorization, secrets management, and data protection in distributed systems.

  • Ability to assess technical risk and translate findings into actionable engineering controls and governance language.

  • Working knowledge of AI/ML security risks relevant to an enterprise consumer context: prompt injection, data leakage, insecure API integration, shadow AI, model output manipulation, and AI supply chain risk.

  • Familiarity with OWASP LLM Top 10 and MITRE ATLAS as applied threat frameworks.

  • Experience with or meaningful exposure to securing integrations with LLM service providers (e.g., Azure OpenAI, AWS Bedrock, Google Vertex AI, Anthropic, OpenAI).

  • Demonstrated engagement with AI security as an area of active professional focus — through applied work, research, certifications, or equivalent.

  • Security Foundations (any of the following)

    • CISSP — Certified Information Systems Security Professional

    • CCSP — Certified Cloud Security Professional

    • Cloud platform security certification: AWS Security Specialty, AZ-500 (Azure), or Google Professional Cloud Security Engineer

    • ISSAP — Information Systems Security Architecture Professional

  • Preferred

    • Familiarity with at least one of the following as it applies to AI or third-party technology risk:

      • GLBA, PCI DSS 4.0.1, NYDFS 23 NYCRR 500, DORA

    • Experience working in regulated financial services or an equivalently controlled environment is a plus, not a requirement.

    • CAISP — Certified AI Security Professional (Practical DevSecOps)

    • CAISS — Certified AI Security Specialist (Ampcus Cyber / ISACA chapters)

    • AIGP — Artificial Intelligence Governance Professional (IAPP)

Pay

Negotiable based on experience and qualifications.

Schedule

Hybrid in Atlanta Office

Similar jobs

Principal AI Engineer

Midcontinent Independent System Operator (MISO)Greater Indianapolis· 3 wk ago
Information Technology$168k–$193k/yrapply on rr.jobsyn.org