Security Principal at Optiv designing AI security solutions for clients, leveraging advanced security services and technologies. Driving pipeline generation and maintaining strong client relationships as a trusted advisor.
About the role
- Staff Security Engineer leading security efforts at AI SaaS company. Collaborating cross-functionally to protect sensitive customer data and products while mentoring engineering team members.
Responsibilities
- Identify and address security risks through comprehensive assessments, mitigation strategies, and execution.
- Ensure secure coding and implement systems to protect against unauthorized access and data breaches.
- Develop and execute incident response plans, conduct forensic analysis, and take preventive measures.
- Maintain compliance with regulations and industry standards, promote transparency, and address ethical concerns.
- Establish real-time monitoring systems, conduct regular assessments, and proactively respond to threats.
- Evaluate and secure third-party integrations to prevent vulnerabilities.
- Educate and raise awareness for security best practices across the engineering team.
- Maintain up-to-date documentation on protocols, incidents, and improvements; report regularly to stakeholders.
- Mentor and guide team members to build security expertise across the engineering organization.
Requirements
- 8+ years in a security-focused engineering role, with hands-on technical architecture, implementation, and oversight experience
- Expertise in SAST/DAST, application security, and CI/CD pipeline integration
- Deep knowledge of AI-specific threats (prompt injection, model poisoning, membership inference, adversarial perturbation, output manipulation)
- Experience implementing security principles, operating system and web application security, and familiarity with the OWASP Top 10 and common threat tactics
- Knowledge of next-generation security technologies (SASE, CASB, RASP)
- Hands-on experience with patch management, software supply chain security, and artifact repositories (e.g., JFrog, Snyk)
- Strong programming or scripting skills in at least one language (e.g., Python, Ruby, Node.js)
- Relevant cybersecurity certification (CISSP, CISM, CISA, CRISC, GIAC, etc.)
- Up-to-date on technology and vulnerability trends; ability to secure cloud computing applications and ecosystems
- Application/infrastructure-level security design experience, including modern mitigation techniques (e.g., DNS-SEC, cryptographic fundamentals)
- Strong automation skills with Python
Benefits
- Choice of medical, dental, and vision insurance plans for you and your family
- Additional insurance coverage options for life, accident, or critical illness
- Flexible paid time off, sick leave, short-term and long-term disability
- 10 US observed holidays, and Canadian statutory holidays by province
- A home office stipend
- 401(k) for US-based employees and RRSP for Canada-based employees
- Paid parental leave
- A local in-person meet-up program
- Hubs in San Francisco and Toronto
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Report this job
Found something wrong with the page? Please let us know by submitting a report below.
Technical Leader overseeing security for Product and Cloud at Tempo. Leading team, engaging with partners, ensuring compliance, fostering innovations in security practices.
Senior Cybersecurity Advisor providing support to threat and vulnerability analysts at Exposant 3 in a hybrid work model. Collaborating on incident responses and vulnerability management in a dynamic team.
Financial Security Advisor at RBC Insurance connecting clients with comprehensive insurance solutions. Building client relationships and leveraging RBC’s brand to grow the market.
Senior IAM Systems Support Analyst responsible for deploying and improving IAM services at RBC. Supporting MFA systems and ensuring platform reliability while collaborating with various teams.
Senior Manager overseeing IAM initiatives and strategic roadmap execution at RBC. Partnering with stakeholders to enhance organizational capabilities in Identity and Access Management.
Senior Internal Controller in information security defining security strategies and conducting risk analysis. Participating in audits and controls for a multidisciplinary firm in Canada.
Senior Security Consultant specializing in penetration testing at TEHORA. Defining security strategies and conducting risk analyses and audits.
Product Manager responsible for managing Microsoft Security Services portfolio at Softchoice. Engaging with customers, Microsoft and stakeholders to drive market success and growth.
LP
Network Security Engineer
LinkedIn Recruiter Post
Network Security Engineer managing operations, implementing security architecture, and providing L3 support. Expertise in Checkpoint, Zscaler, Cloudflare, Aruba Clearpass, and email security required.