Application & AI Security Engineer

About the Role

We are looking for an Application & AI Security Engineer to support the secure development and operation of modern applications, cloud-native platforms, and AI-enabled solutions. In this role, you will work closely with engineering and security teams to assess risks, define security standards, and ensure the secure adoption of emerging technologies.

Key Responsibilities

• Conduct application and AI security reviews and assessments.

• Define and maintain security standards for applications, containers, AI platforms, and software delivery pipelines.

• Support vulnerability management, penetration testing, and security validation activities.

• Contribute to software supply chain security initiatives and third-party risk assessments.

• Partner with engineering teams to improve identity management, secrets handling, and platform security controls.

• Perform threat modeling and technical risk assessments.

• Support governance, compliance, and security assurance activities through technical recommendations and reporting.

• Provide security guidance for AI-enabled solutions and emerging technologies.

Requirements

• Experience in Application Security, Product Security, DevSecOps, Security Engineering, or a related field.

• Strong knowledge of secure software development practices and application security principles.

• Hands-on experience with containerized environments, cloud platforms, and CI/CD security.

• Understanding of AI security concepts, including risks related to large language models (LLMs), data protection, model integrations, or AI governance.

• Familiarity with vulnerability management and security testing methodologies.

• Understanding of software supply chain security concepts.

• Experience with tools such as CrowdStrike, Bold Security, Nightfall, Aikido, Zscaler or

• Lakera Guard - nice to have

• Familiarity with MCP, agentic AI frameworks or enterprise AI platform administration- nice to have

• Ability to communicate security risks and recommendations to both technical and non-technical stakeholders.

• Professional proficiency in English.