Security Engineer - Application & AI Security (REMOTE)

About The Position

Requirements

• 3+ years in hands-on application security, DevSecOps, or security engineering roles.
• Proven experience building and configuring secure CI/CD pipelines (Jenkins, GitLab CI, GitHub Actions, Azure DevOps).
• Deep proficiency with cloud security in AWS, Azure, or GCP environments.
• Strong implementation experience with infrastructure as code (Terraform, CloudFormation) and container security (Docker, Kubernetes).
• Strong scripting and automation skills (Python, Bash, PowerShell) for security tooling.
• Versatility across web/API security, data pipeline security, microservices, and database security.
• Understanding of security frameworks (NIST, ISO 27001, SOC 2) and compliance requirements (GDPR, HIPAA, PCI-DSS).
• Hands-on experience deploying and configuring security scanning tools (SAST, DAST, SCA).
• Excellent communication skills—ability to translate security requirements into working technical implementations.
• Experience working embedded within cross-functional development teams.
• Proven track record of hands-on problem-solving in fast-paced development environments.
• Regular and predictable attendance.

Nice To Haves

• Hands-on experience with AI/ML security, model security, and data governance.
• Technical knowledge of LLM security, prompt injection prevention, and AI agent safety.
• Security certifications (CISSP, CEH, OSCP, CSSLP, or cloud security certifications).
• Strong coding background in Python, Go, or similar languages.
• Background in software development or engineering transitioning to security.
• Direct experience implementing secrets management solutions (HashiCorp Vault, AWS Secrets Manager).
• Practical experience with zero trust architecture implementation.
• Familiarity with data security, ETL processes, and data warehouse security.
• Experience with microservices architectures and distributed systems security.

Responsibilities

• Build and deploy security controls across web applications, data pipelines, and AI systems.
• Write automation scripts, directly remediate vulnerabilities in code and infrastructure, and conduct hands-on penetration testing and security assessments.
• Technically implement security frameworks for Agentic AI systems, build guardrails for AI agents, configure model security controls, and integrate AI-specific security tooling into development workflows.
• Configure security controls in CI/CD pipelines, implement secrets management and vulnerability scanning, harden cloud infrastructure deployments, and write infrastructure-as-code with built-in security and compliance.
• Partner with advisory security policy team to translate requirements into working solutions.
• Conduct hands-on security training, code reviews, and provide practical implementation guidance during architectural discussions.