Senior Product Security Engineer (AI/ML)

Greenhouse

About The Position

Our mission at Greenhouse is to make every company great at hiring – so we go to great lengths to hire great people because we believe that they’re the foundation of our success. At Greenhouse, you’ll join a team that collaborates purposefully, fosters inclusivity, and communicates with transparency and accountability so we can help companies measurably improve the way they hire. Join us to do the best work of your career, solving meaningful problems with remarkable teams. Greenhouse is looking for a Senior Product Security Engineer (AI/ML) to join our team! Security at Greenhouse is foundational to our success and is critical for building & maintaining our user and customer trust. From influencing how we write our software, deploy our infrastructure, and make architectural decisions, Security is a major focus here at Greenhouse. We are excited to make our program more robust with the addition of a Product Security Engineer with AI security expertise. You will serve as the team’s Subject Matter Expert (SME) on AI security focussed engagements while contributing to our broader security engineering goals. You will act as a partner with our engineers to improve security best practices across our agile SDLC, specifically focusing on securing our emerging AI and Machine Learning features. Who will love this job An Entrepreneurial Problem-Solver - You don’t wait for a ticket to fix a gap. You proactively stay current on AI/ML trends and identify ways to harden our systems before risks manifest A Pragmatic Partner - You understand the "need for business speed." You thrive in environments where security enables innovation rather than hindering it, finding creative ways to support development velocity An Independent Driver - You demonstrate a high bias for action. You are comfortable completing tasks independently and asynchronously A Generous Collaborator - You listen well and work effectively with diverse audiences, from legal counsel during AI Ethics committee reviews to infrastructure engineers feature development, incorporating feedback to build better solutions A Clear Communicator - You can translate a complex technical concept into a real-world business impact, whether through technical writing, documentation, or internal presentations

Requirements

Practical experience securing model training and inference pipelines (specifically ARC and MLFlow) and securing AI Gateways
Professional experience as a developer releasing production code. You are proficient with modern workflows like Agile, GitOps, and CI/CD
Hands-on experience using modern AI development tools (e.g., Cursor, GitHub Copilot, Gemini, or Claude) and interacting with OpenAI/Gemini APIs
A strong foundation in AWS core services, Kubernetes (K8s), Linux systems, and networking principles
Expert-level knowledge of web and AI/ML application security topics (e.g. OWASP Web / LLM / Agent)
Exposure to AI compliance frameworks (e.g. ISO42001)
Experience with architecture reviews, auth protocols flows related to SAML, OAuth2, and OIDC
Deep understanding of the AI ecosystem including design principles, threat models, and appropriate tools
The ability to perform both structured and ad-hoc threat models, providing practical, code-level recommendations that balance security with development speed

Nice To Haves

Experience working with Ruby on Rails, a plus
Your own unique talents! Your background has given you a unique perspective and set of transferable skills that aren't always in alignment with a given role - but those are qualities we value at Greenhouse. If you don't meet 100% of the qualifications outlined above, we still strongly encourage you to apply

Responsibilities

Act as the primary advisor for securing AI/ML workflows, conducting threat modeling for AI product features, and defining guardrails for Large Language Model (LLM) usage
Advise and review on agentic AI usage across the R&D department
Perform security testing and source code review of application and underlying platform for both AI and non-AI systems
Help upskill the wider security and engineering teams on AI security fundamentals and common threats/vulnerabilities
Partner with our compliance and legal teams on AI governance decisions and processes
Act as a security partner, building and maintaining relationships with product and engineering teams to integrate security into the development process
Embed security principles and controls to achieve a ‘secure by default’ posture
Secure modern technology stacks that include Kubernetes, Docker, AWS, and CI/CD tooling
Participate in the security engineering on-call rotation to triage and respond to urgent security alerts and incidents outside of standard business hours when necessary

Benefits

Greenhouse provides a variety of benefits to employees, including medical, dental, and vision insurance, basic life insurance, mental health resources, financial wellness benefits, and a fully paid parental leave program.
For US-based employees, we offer short-term and long-term disability coverage, a 401(k) plan and company match.
U.S. based employees also receive, per calendar year, up to 14 scheduled paid holidays and up to 80 hours of paid sick leave.
Non-exempt employees accrue up to 20-25 days of paid vacation time annually, depending on tenure, and exempt employees have flexible paid time off (PTO).

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume