Information Security Engineer 4

Lam ResearchFremont, CA
$92,000 - $211,000Hybrid

About The Position

This position will be part of Lam Information Security’s Application Security team, supporting Secure SDLC, product security, application risk assessments, threat modeling, vulnerability validation, penetration testing, and AI-related security initiatives across Lam-developed applications and AI-enabled solutions. This position will increase Lam’s Application Security and Product Security capacity by helping scale Secure SDLC reviews, application risk assessments, threat modeling, vulnerability validation, penetration testing, and AI-related security reviews. The role will help reduce security risk earlier in the development lifecycle, improve consistency across Lam-developed applications and AI-enabled solutions, and support engineering teams in delivering secure software with appropriate controls for data, access, AI model usage, logging, and human oversight.

Requirements

  • Bachelor’s degree in computer science, Information Security, Information Technology, Engineering, or related field, or equivalent practical experience.
  • 3+ years of experience in information security, application security, product security, software engineering, DevSecOps, or related technical field.
  • Working knowledge of Secure SDLC practices, including threat modeling, secure design review, code review, vulnerability assessment, and security testing.
  • Familiarity with common application security frameworks and risks, including OWASP Top 10, API security, authentication/authorization, input validation, secrets management, and secure coding practices.
  • Hands-on or working experience with one or more application security tools such as SAST, DAST, SCA, secrets scanning, container scanning, or vulnerability management platforms.
  • Basic understanding of CI/CD pipelines and developer tools such as Git, Bitbucket, Jenkins, Azure DevOps, Artifactory, or similar platforms.
  • Ability to analyze technical information, identify security risks, and communicate findings clearly to engineering and security stakeholders.
  • Strong collaboration skills and ability to work with cross-functional global teams.

Nice To Haves

  • Experience supporting security reviews for cloud, product, or manufacturing/engineering software environments.
  • Experience with Azure, Microsoft DevOps, Kubernetes, containers, APIs, or modern application architectures.
  • Exposure to AI/ML security concepts, including generative AI, RAG, AI agents, model governance, prompt injection, model/data leakage, AI-assisted coding, and secure MLOps.
  • Familiarity with security requirements for AI-enabled applications, including approved model usage, data minimization, access control, logging, monitoring, human oversight, and secure tool/plugin integration.
  • Experience helping engineering teams remediate application vulnerabilities and validate fixes.
  • Security certifications such as Security+, CSSLP, CISSP, GIAC, or similar are preferred but not required.
  • Ability to break down complex security problems, document practical recommendations, and contribute to repeatable security review processes.

Responsibilities

  • Support the objectives of the Application Security team by contributing to secure design, Secure SDLC execution, and product security reviews.
  • Assist with application risk assessments, secure design reviews, threat modeling, code review, vulnerability assessment, and penetration testing.
  • Support the integration and operational use of application security tools, including SAST, SCA and DAST, and other DevSecOps capabilities in CI/CD pipelines.
  • Work with development teams to identify and document security requirements, common application risks, and required controls based on application risk level, data sensitivity, exposure, and system interconnections.
  • Help engineering teams interpret and apply secure coding standards, OWASP guidance, internal Secure SDLC requirements, and product security best practices.
  • Assist in reviewing AI-related security risks, including prompt injection, insecure model/tool integration, data leakage, excessive autonomy, insecure AI outputs, model sourcing, sensitive data exposure, and lack of human-in-the-loop controls.
  • Participate in AI-related security initiatives, including secure AI model usage, AI-assisted development governance, AI-enabled application review, and secure MLOps process improvement.
  • Research, evaluate, and help pilot new security capabilities, automation, and AI-assisted AppSec workflows under guidance from senior security engineers.
  • Document findings, recommendations, and review outcomes clearly for application teams, security leadership, and governance tracking.
  • Partner with cross-functional teams to improve secure development practices and reduce application and product security risk.

Benefits

  • Comprehensive set of outstanding benefits
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service