Apply on Employer Site

Capital Companies Group · 2 months ago

Lead AI Security Engineer

Irvine, CA

Full-time

Onsite

Lead/Staff

$173K/yr - $277K/yr

8+ years exp

Capital Group Companies is seeking a Lead AI Security Engineer to secure their enterprise AI platforms. The role involves collaborating with various engineering teams to integrate security measures and provide thought leadership in AI security policies.

AdviceFinancial ServicesReal Estate

Responsibilities

AI Security Procurement Managements: You will procure and/or build technical solutions to reduce the risk of misconfiguration, exploitation, and other security issues for multiple enterprise AI platforms

Embedding Security in the AI Platform Ecosystem: Working closely with platform teams to integrate security into every component of the AI Platform

Implementing Security Controls & “Guardrails” for GenAI: Designing, deploying, and operating technical controls to prevent misuse of AI systems. Guardrails design includes content filtering systems, usage policies, and safety checks that mitigate issues like prompt injection attacks, unauthorized data extraction, model bias or hallucinations, and other misuse of generative AI platforms

AI Runtime Security: Engineer continually tests and updates to the guardrails, replacing weaker controls with more robust solutions as threats evolve

AI Governance: You will work cross functionally with architecture and platform teams to monitor alignment of solutions to AI Governance processes

Contribute to Standards and Policies: You will provide thought leadership for Information Security policies and standards for AI in collaboration with technology risk

AI/Agent SME: You will provide AI/Agent subject matter expertise for AI Incidents and Security Reviews, and help develop incident response playbooks for AI-related security incidents

Qualification

AI Security Procurement ManagementAI Runtime SecurityAI GovernanceProgramming & ML ToolCloud SecurityAPI SecurityKubernetesInformation Security CertificationsEffective CommunicationCollaboration Skills

Required

8+ years of experience in information security, application security, platform security, or penetration testing, DevSecOps, network security and other security disciplines

Experience securing AI platforms, whether internal AI platforms or offerings such as CoPilot Studio, Amazon Bedrock, and/or Azure AI Gateway

Proficient in Programming & ML Tool. Strong Python skills required, with experience in AI/ML frameworks. Ability to review and write ML code to implement security measures (e.g., model validation, adversarial testing) is desired

5+ years of relevant professional experience or demonstrated an equivalent level of expertise in security engineering, such as cloud, API, or platform security

3+ years of experience embedded identity, network, and encryption controls into enterprise platforms

Ability to effectively partner and collaborate with stakeholder teams

Effective communication skills and the ability to outline security risks to leadership

Familiarity with cloud and API security vendors and managed services providers

Preferred

Knowledge and experience with technologies including Kubernetes, Containers, CI/CD, and Cloud Service Providers

Familiarity with function and purpose of key AI platform components such as AI gateways (Kong, Databricks Mosaic AI Gateway, custom API orchestration), Model Orchestration (Examples LangChain, LlamaIndex, etc.)

Familiarity with key AI regulatory frameworks such as NIST AI RMF, MITRE ATLAS, GDPR, EU AI Act, etc

Information Security certifications (CISSP, SANS GIAC, CISA, etc.)