Senior Engineer - GenAI Security

About The Position

Requirements

• 8+ years in cybersecurity, security architecture, or platform security engineering
• Strong expertise in: Identity and access management (IAM), OAuth2, mTLS API security, gateway enforcement, and zero-trust design
• Threat modeling and risk assessment
• Proven experience designing and securing: Distributed, cloud-native platforms
• Multi-tenant systems with strict data access controls
• Strong understanding of: Data protection, encryption, and access control principles
• Auditability, logging, and compliance frameworks
• Familiarity with: Observability and detection engineering (SIEM, anomaly detection)
• Attack vectors and security risks in modern application architectures

Nice To Haves

• Experience with GenAI / AI/ML security, including: Prompt injection and adversarial attacks
• Data leakage and model misuse risks
• Guardrails and safety evaluation frameworks
• Experience securing: RAG architectures, vector databases, and retrieval pipelines
• Agent-based or multi-agent systems
• Experience in regulated environments (financial services strongly preferred)
• Familiarity with: OWASP LLM / agentic security risks
• Model governance, lineage, and compliance metadata

Responsibilities

• Ensures that the design and engineering approach for complex features are consistent with the larger portfolio solution
• Define the technology tool stack for the solution and evaluate and adapt new testing tool/framework/practices for team(s)
• Enables team(s)/applications with Continuous Integration/Continuous Development (CI/CD) capabilities and engages with other technical stakeholders pertaining to efficient functioning of CI-CD pipeline
• Guides and influences team(s) on design and best practices for high code performance –e.g. pairing, code reviews
• Provides end-to-end delivery of complex features, including automation, for either a single team or multiple teams, at the program level
• Conducts research, design prototyping and other exploration activities such as evaluating new toolsets and components for release management, CI/CD, and features
• Works with stakeholders to establish high-level solution needs and with architects for technical requirements
• Define and implement the security architecture for the GenAI platform
• Design and enforce identity and access control models
• Establish secure API and tool invocation patterns
• Define and implement AI guardrails and safety controls
• Lead threat modeling and risk assessment for GenAI systems
• Design and enforce RAG and data security controls

Benefits

• Access to paid time off
• Resources and support to our employees
• Discretionary incentive eligible
• Annual discretionary award based on individual performance, line of business performance, and overall company success.