AI Security Automation Engineer

About The Position

Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, Engineering, or equivalent practical experience.
• Strong knowledge of web and application security fundamentals (OWASP Top 10 and related risk models).
• Hands-on experience with SAST, DAST, SCA, or secrets scanning tools in production environments.
• Experience integrating security tooling into CI/CD and modern development workflows (pull requests, pipeline integrations).
• Proficiency in at least one automation language (Python, JavaScript/TypeScript, or similar) and experience writing unit tests for automation code.
• Practical experience with cloud platforms (AWS or Azure) and cloud security fundamentals (IAM, networking, logging/monitoring).
• Experience building CI/CD-integrated controls and automation; familiarity with Harness is a plus.
• Strong collaboration and communication skills; proven ability to work cross-functionally with engineering and platform teams.
• Experience producing runbooks, demos, and user documentation for technical audiences.

Nice To Haves

• Experience with software supply chain security practices and relevant tooling.
• Background in agent-based or IDE integrations that assist or automate remediation workflows.
• Familiarity with observability and monitoring systems used to validate security automations.

Responsibilities

• Integrate security controls and automated testing into delivery pipelines and SDLC workflows in partnership with engineering, platform, and product teams.
• Design, implement, and maintain automation for SAST, DAST (web and API), SCA, and secrets scanning to accelerate detection and remediation.
• Build pipeline-integrated security controls and orchestration in CI/CD systems (including Harness and related build/deploy workflows).
• Create and maintain automated triage workflows and integrations (IDE and server-side) to prioritize findings and drive standardized remediation playbooks.
• Tune analysis pipelines and security rules to reduce false positives and operational noise.
• Automate identification of affected assets and dependency impact across inventory sources and dependency graphs to speed critical vulnerability response.
• Produce and maintain runbooks, playbooks, and documentation for recurring findings, remediation steps, and operational processes.
• Support the security exception process: documentation, approvals, and lifecycle tracking.
• Evaluate and integrate AI-assisted security tools into workflows; assess output quality, document limitations, and define safe usage and review practices.
• Develop unit tests, demos, and user-facing documentation to validate security automations and demonstrate value to engineering teams.
• Participate in incident response and post-incident analysis to expand detection and automation coverage.
• Prototype and evaluate new security tooling or integration approaches to improve operational efficiency.
• Contribute to internal training and knowledge sharing on security automation best practices.
• Collaborate with cloud/infrastructure teams to ensure controls operate effectively in cloud environments.
• Support security assessments and audits by producing necessary artifacts and evidence.

Benefits

• Along with health and financial benefits, athenistas enjoy perks specific to each location, including commuter support, employee assistance programs, tuition assistance, employee resource groups, and collaborative workspaces — some offices even welcome dogs.
• We also encourage a better work-life balance for athenistas with our flexibility.
• While we know in-office collaboration is critical to our vision, we recognize that not all work needs to be done within an office environment, full-time.
• With consistent communication and digital collaboration tools, athenahealth enables employees to find a balance that feels fulfilling and productive for each individual situation.
• In addition to our traditional benefits and perks, we sponsor events throughout the year, including book clubs, external speakers, and hackathons.
• We provide athenistas with a company culture based on learning, the support of an engaged team, and an inclusive environment where all employees are valued.