AI & Data Security Engineer

About The Position

Requirements

• 8+ years of professional experience in data security, cybersecurity, security architecture, or data engineering with a primary focus on security.
• Proven hands-on experience designing and implementing Role-Based Access Control (RBAC), row-level, and column-level security policies in modern cloud data platforms (specifically Snowflake and/or Databricks/DBX).
• Strong expertise in API security controls, authentication, and authorization protocols (e.g., OAuth2, OIDC, SAML, JWT) to protect data access.
• Proficiency in Python, Java, Go, or similar languages used for scripting, automation, and building security controls within data pipelines.
• Solid understanding of data privacy regulations (e.g., GDPR, CCPA) and experience translating these regulatory requirements into technical data governance and access controls.
• Experience implementing security logging, audit trails, and monitoring solutions to detect unauthorized access or data exfiltration.
• Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or equivalent practical experience.

Nice To Haves

• Direct experience securing AI/ML lifecycles, LLM-powered applications, or autonomous AI agents (e.g., securing RAG architectures, mitigating prompt injection, defining data access boundaries for AI).
• Experience leading or participating in red team exercises, penetration testing, or threat modeling specifically tailored to machine learning models and AI systems.
• Demonstrated ability to partner effectively with non-technical stakeholders, including Legal, Privacy, and Data Governance teams, to establish and enforce enterprise wide security standards.
• Experience building or deploying anomaly detection systems to identify malicious activity within complex data pipelines.
• Strong technical writing skills with a track record of creating developer guidelines, security standards, and best practices that enable secure-by-default engineering at scale.
• Master's degree in a relevant field, or industry recognized security certifications (e.g., CISSP, CISM, Cloud Security certifications).

Responsibilities

• Securing data across the full AI lifecycle, from data classification and enforcement of access controls to model deployment and agentic applications.
• Designing and enforcing row-level security policies, API-driven access controls, and role-based data grants across AI pipelines, chat interfaces, and autonomous agents.
• Partnering closely with Data Governance, Legal, and Engineering to align AI data usage with enterprise policy and regulatory requirements.
• Leading red team exercises to proactively identify vulnerabilities in AI systems and driving remedial actions.
• Owning the development of security standards and guidelines that enable product teams to build AI applications securely by default, at scale.