RemoteLeaf Logo
Log in Sign up

Staff Information Security Engineer - AI First

8 hours, 59 minutes ago
United States
Full-time
Senior
Security Engineer
Artificial Intelligence and Machine Learning
AWS LLM Python SIEM Terraform
Apply Now
Rithum

Rithum

End to End E Commerce Solutions for Brands & Retailers | Rithum CommerceHub and ChannelAdvisor are now united as Rithum. We empower top brands, suppliers, and retailers with durable, profitable e commerce solutions. Rithum is the hottest place for free...

Internet Software & Services
$13M raised
View All Jobs 63

Description

  • Act as the bridge between security requirements and feasible implementation, proposing compensating controls and helping register, track, and remediate residual risks.
  • Implement preventive, default-on security controls across cloud and enterprise environments using policy-as-code and infrastructure-as-code.
  • Implement and enforce identity and access controls, including access boundaries for AI systems and non-human or agent identities.
  • Maintain the information security risk register and translate emerging threats into actionable guidance for engineering teams.
  • Support third-party and vendor risk assessments, especially for vendors processing data through AI pipelines.
  • Automate repetitive security workflows such as evidence collection, access reviews, and alert enrichment.
  • Build or operate AI-assisted security agents with human-in-the-loop approval gates and least-privilege credentials.
  • Integrate security tools such as SIEM, CSPM, DAST/SAST, and vulnerability scanners with LLM layers to surface actionable insight and automated responses.
  • Define and enforce security requirements for AI-powered features, including model access controls, prompt-injection mitigations, output validation, and data-handling boundaries.
  • Conduct threat modeling for agentic and LLM-based systems, including tool misuse, indirect prompt injection, and supply chain risk.

Requirements

  • 5+ years of security engineering experience with demonstrated AI/ML security depth, including prompt injection, model supply chain, adversarial inputs, and RAG.
  • Experience using AI tools such as ChatGPT, Copilot, or Claude, and LLM frameworks and APIs such as OpenAI, Anthropic, or LangChain.
  • Hands-on identity and access expertise across modern enterprise and cloud identity stacks, including access models for AI systems and non-human identities.
  • Experience with infrastructure-as-code and policy-as-code tools such as Terraform and OPA/Rego, plus proficiency in a scripting language for automation, with Python preferred.
  • Cloud security expertise, including AWS Solutions Architect or Security Specialty-level knowledge, multi-account governance, preventive guardrails, and policy-as-code.
  • Application security knowledge, including OWASP Top 10, OWASP LLM/GenAI Top 10, secure SDLC, and threat modeling methods such as STRIDE or PASTA.
  • Practical experience building or operating AI agents, and integrating security tooling such as SIEM, CSPM, SAST/DAST/SCA so it drives action rather than raw alerts.
  • Working knowledge of SOC 2 and/or ISO 27001 control frameworks.
  • Experience building or operating AI agents in a production environment is preferred.
  • Awareness of privacy regulations such as GDPR and CCPA as they apply to AI, including privacy-by-design and DPIAs.
  • Red teaming or adversarial ML research background is preferred.
  • Experience implementing privileged access, key management, posture management, or data protection programs is preferred.
  • Experience with EDR, CASB, DLP, security automation, and SAST, DAST, IAST, and SCA tools is preferred.
  • Cloud architecture or security certifications such as CCSK, TAISE, or AWS are preferred.
  • Ability to travel up to 10%.

Benefits

  • Expected base salary range of $170,000 to $220,000 per year.
  • 12% discretionary annual bonus for non-sales roles.
  • Comprehensive benefits package.
  • Medical, dental, and vision coverage with company HSA contributions starting on Day 1.
  • 6% 401(k) match.
  • Generous time off package, including 20 days of PTO, paid holidays, floating holidays, sick days, wellness days, and a paid volunteer day, with PTO increasing at 3 and 5 years of service.
  • 12 weeks of primary caregiver leave and 4 weeks of secondary caregiver leave.
  • Remote-first working conditions with a $65/month remote work internet stipend.
  • Access to the Calm app and the Employee Assistance Program.
  • Tuition assistance and career development opportunities.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

iFood

Specialist Offensive Security AI

iFood 5K-10K Air Freight & Logistics

iFood is seeking a professional to help protect and assess autonomous AI environments within its technology and fintech ecosystem, with a focus on identifying risks and enabling safer operations at scale.

Anywhere Lead AI (Artificial Intelligence) Security Engineer
Cybersecurity
8 hours, 59 minutes ago
Multiplica Talent

Ingeniero DevSecOps Junior

Multiplica Talent 251-1K Professional Services

Multiplica busca un/a DevSecOps Engineer para diseñar y optimizar la automatización, la infraestructura cloud y la seguridad integrada en el ciclo de desarrollo de software para equipos que entregan productos digitales.

Mexico Full-time Junior DevOps Engineer Security Engineer
Agile AWS Azure Bash CI/CD CloudFormation Datadog DevSecOps Docker GCP Git GitHub Actions Grafana Jenkins Kubernetes Linux Microservices New Relic Prometheus Python Secrets Management Terraform
1 day, 8 hours ago
CallTek

SecOps Analyst - Systems Implementation & Hardening

CallTek 51-250 Internet Software & Services

Mid-Level SecOps Analyst at a company focused on securing new infrastructure and applications before production through security control implementation, validation, and technical risk review.

Philippines Full-time Mid Level Security Engineer
AWS Azure Cisco CrowdStrike Cybersecurity Elasticsearch Encryption Fortinet GCP Network Security SIEM
1 day, 9 hours ago
3Pillar Global

Senior Information Security Engineer

3Pillar Global 1K-5K Internet Software & Services

3Pillar is hiring a Senior Information Security Engineer in Romania to lead product and cloud security efforts across its SaaS and Azure-based environment.

Romania Full-time Senior Security Engineer
Azure Bash Datadog Kubernetes Penetration Testing PowerShell Python Terraform
1 day, 9 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers