AI Security Engineer

This AI Security Engineer position is for a one‑year term position. We are looking for a forward-thinking AI Security Engineer to sit at the intersection of artificial intelligence and cybersecurity. This is not a traditional security role, you will use AI offensively to find our weaknesses before adversaries do, secure the AI systems we depend on, and embed intelligent automation into every layer of our security practice.

You will partner closely with the security, applications, and infrastructure teams to ensure that AI tools like Copilot, internal chatbots, and third-party AI services are configured securely, used responsibly, and continuously monitored. If you are energized by the idea of turning AI into both a weapon and a shield, this role is built for you.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

· Bachelor’s degree or equivalent experience in computer science, information systems management, business administration, or a related field. Relevant certifications: OSCP, CEH, CISSP, or emerging AI security credentials a plus.

· Minimum of three (3) years of hands‑on experience in security operations and AI tools usage.

· Experience with Microsoft Security Copilot and Defender for Cloud.

· Knowledge of AI governance frameworks such as NIST AI RMF, ISO 42001, or the EU AI Act.

· Familiarity with MLOps pipelines, model registries, and the security considerations of deploying AI in production.

· Background in threat intelligence or adversarial machine learning research.

· Strong organizational, analytical, and problem-solving skills, with the ability to manage multiple priorities simultaneously.

· Excellent written and verbal communication skills, capable of engaging technical and non‑technical stakeholders and building collaborative relationships.

· Demonstrated ability to work independently and within cross‑functional teams, motivating team members toward successful project outcomes.

AI-POWERED OFFENSIVE SECURITY

· Design and execute AI-driven penetration testing campaigns to simulate real-world attack scenarios against our network, endpoints, and cloud infrastructure.

· Leverage large language models, autonomous agents, and machine-learning-based reconnaissance tools to identify attack vectors that traditional scanners miss.

· Conduct red-team exercises using AI tooling to emulate advanced persistent threat (APT) behavior and report actionable findings to leadership.

· Maintain a library of AI-assisted attack playbooks and keep them current with the evolving threat landscape.



AI SYSTEM VULNERABILITY MANAGEMENT

· Assess our AI tools, ML models, APIs, and data pipelines for security weaknesses including prompt injection, model inversion, data poisoning, and supply-chain risks.

· Develop and maintain a vulnerability register specific to AI/ML assets, prioritizing remediation based on business risk.

· Work with model owners and data teams to implement controls such as output filtering, adversarial robustness testing, and access governance for AI systems.

· Track emerging CVEs, research publications, and threat intelligence related to AI security and translate findings into actionable mitigations.

SECURE AI-ASSISTED SOFTWARE DEVELOPMENT

· Embed security checkpoints into AI-augmented development workflows, ensuring code generated by tools such as Copilot is scanned, reviewed, and free of common vulnerabilities.

· Build and maintain automated pipelines that use AI to detect insecure coding patterns (OWASP Top 10, SANS CWE) during code commit, review, and deployment stages.

· Educate developers on safe prompting practices, data hygiene when using AI coding assistants, and how to critically evaluate AI-generated code.

· Collaborate with the applications team to shift AI-assisted security testing left, reducing the cost and impact of vulnerabilities discovered late in the SDLC.

AI TOOL CONFIGURATION & OPTIMIZATION

· Own the security configuration, policy enforcement, and access controls for organizational AI tools including Copilot, Microsoft 365 Copilot, internal LLM chatbots, and third-party AI APIs.

· Define and enforce data loss prevention (DLP) policies to prevent sensitive information from being inadvertently submitted to external AI services.

· Partner with IT and vendors to evaluate new AI tools against security requirements before onboarding and establish a repeatable AI tool risk assessment framework.

· Create and maintain runbooks for secure AI tool usage, onboarding, and de-provisioning across the organization.

DETECTION, REPORTING & CONTINUOUS IMPROVEMENT

· Design and tune AI-powered detection rules within our SIEM and EDR platforms to reduce alert fatigue and surface high-fidelity threats faster.

· Build dashboards and automated reporting workflows that give security leadership clear, real-time visibility into AI-related risk posture and incident trends.

· Apply machine learning models to log and behavioral data to detect anomalies indicative of insider threats, compromised accounts, or AI-specific attacks.

· Lead post-incident reviews for AI-related security events and translate lessons learned into updated controls and playbooks.

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.