Senior Application Security Engineer, AI and Machine Learning
Role details
Job location
Tech stack
Job description
- Focus: We complete one goal at a time with care, collaborating as a team to deliver features with precision.
- Balance: Sustained performance comes from rest and recovery. We ensure a healthy work-life balance to keep you at your best.
- Craftsmanship: Innovation through excellence. Every detail matters, and we take pride in mastering our craft.
- Minimal: Simplicity drives our innovation. We eliminate complexity through discipline and focus on what truly matters., You will work closely with platform engineers, ML engineers, and infrastructure teams to identify risks, design secure architectures, and build security tooling that enables engineers to move quickly and safely.
This role is execution focused. You will drive technical implementation, perform deep security reviews, and help build out our application security capabilities alongside the CISO and engineering leadership.
This role can be based out of one of our office hubs (San Francisco or Seattle) with in-office requirements of at least 2 days per week, plus occasional team/company offsites. We are not able to offer visa sponsorship for this position at this time.
What You'll Do
Secure AI and Machine Learning Systems
- Perform threat modeling across AI platforms, inference services, and ML pipelines
- Identify risks such as prompt injection, model extraction, adversarial inputs, and data leakage
- Review model serving architectures and inference pipelines
- Partner with ML engineers to secure training, fine tuning, and deployment workflows
- Help design isolation and security controls for multi tenant AI workloads
Application Security Engineering
- Perform architecture and design security reviews
- Conduct targeted code reviews for high risk components
- Identify security gaps in APIs, micro-services, and distributed systems
- Build secure patterns for authentication, authorization, and service to service communication
- Help engineering teams implement secure defaults and guardrails
Inference Platform Security
- Secure customer facing inference APIs and services
- Protect against abuse, model extraction, and adversarial behavior
- Design rate limiting, isolation, and workload protection controls
- Build monitoring and detection for anomalous inference behavior
AI Supply Chain and Model Security
- Evaluate open source models and dependencies
- Secure model artifacts and distribution pipelines
- Implement integrity validation and provenance controls
- Help secure container images and runtime environments
Security Automation and Tooling
- Build security automation for AI and application pipelines
- Integrate security scanning into CI/CD workflows
- Develop tooling to help engineers detect and fix issues early
- Improve developer experience with security guardrails, * Engineering teams ship quickly with secure defaults
- Inference platforms are resilient against abuse and extraction
- Model pipelines are secure and auditable
- Security tooling scales with engineering growth
Why This Role Matters
This role sits at the intersection of application security, AI infrastructure, and developer platforms. You will help define how we secure modern AI systems while enabling engineers to move quickly and safely.
You will work closely with engineering leadership and the CISO to build practical, scalable security capabilities that support rapid innovation in AI and machine learning.
Requirements
- Strong background in application security engineering
- Experience performing threat modeling and architecture reviews
- Experience securing APIs and distributed systems
- Experience working in cloud environments such as AWS, GCP, or Azure
- Experience with containers and Kubernetes
- Strong scripting or programming skills such as Python, Go, or similar
- Experience working closely with engineering teams to implement security improvements
AI and Machine Learning Experience
- Experience securing ML pipelines, inference systems, or data platforms
- Familiarity with risks such as prompt injection, model extraction, and adversarial inputs
- Experience reviewing model serving architectures
- Understanding of training data security and data leakage risks
It's a Strong Plus If You Have
- Red team or offensive security experience
- Experience crafting payloads and evaluating CVEs for exploitability in diverse environments
- Experience with GPU infrastructure or high performance computing
- Experience with Hugging Face, PyTorch, TensorFlow, or similar frameworks
- Experience with LLM systems, RAG pipelines, or agent frameworks
- Experience building security automation pipelines
- Experience securing multi tenant infrastructure
Benefits & conditions
Paid parental leave, Parental leave, Health insurance, Paid time off, Vision insurance, Dental insurance, Paid holidays, We offer a comprehensive and competitive benefits package designed to support our employees' health, well-being, and long-term success. Benefits may vary by location, team, and role., * Comprehensive medical, dental and vision coverage (U.S.); Private medical and dental insurance (U.K.)
- Retirement and financial wellness support (U.S.); Pension contribution (U.K.)
- Generous paid time off, plus holidays
- Paid parental leave
- Professional development support
- Wellness and work-from-home stipends
- Flexible work environment
