AI Security Engineer - Hybrid (Atlanta, GA)

About The Position

Requirements

• Hands-on proficiency managing and operating enterprise security tools, specifically Qualys, Salt, CrowdStrike AIDR, and Snyk
• Demonstrated experience conducting SAST, DAST, SCA, and securing complex APIs
• Deep understanding of identity-first security principles, Zero Trust architecture, and enterprise SSO environments
• Strong familiarity with aligning security practices to the CIS Top 18 Controls
• Excellent communication skills with the ability to translate complex security concepts for both technical teams and executive leadership
• Bachelor of Science or advanced degree in Computer Science, Information Security, or a related field
• Proven experience in application security, with a specialized focus on securing artificial intelligence, machine learning, or large language models

Nice To Haves

• Background in researching or mitigating human factors in cybersecurity is a plus
• Active participation in the broader security community, such as ISACA, ISC2, or mentorship programs is preferred

Responsibilities

• Design and enforce security guardrails for AI applications, ensuring all systems integrate seamlessly with identity management frameworks, including Microsoft Entra ID and Phishing-Resistant Multi-Factor Authentication (PRMFA)
• Lead comprehensive application security testing across the enterprise
• Utilize Snyk for Static Application Security Testing (SAST) and Software Composition Analysis (SCA), and conduct Dynamic Application Security Testing (DAST) to identify and remediate vulnerabilities early in the software development lifecycle
• Leverage Salt to secure enterprise APIs and data pipelines, ensuring robust discovery, posture management, and threat protection for the systems feeding AI models and core applications
• Utilize Qualys for continuous vulnerability scanning of the infrastructure hosting AI tools and broader application environments
• Conduct rigorous threat modeling for AI and machine learning pipelines
• Identify and mitigate risks specific to AI, such as prompt injection and data poisoning, guided by industry frameworks
• Monitor and respond to AI-specific threats using CrowdStrike AIDR
• Develop playbooks and participate in tabletop exercises designed around AI-driven incidents to improve organizational resilience
• Collaborate with security awareness teams to evaluate how employees interact with AI
• Develop strategies to mitigate risks related to over-reliance on AI outputs and AI-generated phishing attacks
• Evaluate the security posture of third-party AI applications and SaaS platforms
• Ensure external tools meet stringent compliance requirements, including SOC 2 Type 2 standards

Benefits

• Variable compensation
• Commission
• Annual bonus
• Health benefits
• Wellbeing benefits
• Retirement benefits
• Other financial benefits
• Paid time off
• Overtime pay for non-exempt employees
• Robust learning and development programs
• Reimbursement of job-related expenses
• Employee perks and discounts