Principal AI Security Engineer (Fintech)

TL;DR

Principal AI Security Engineer (AI Security/Fintech): Owning the security of third-party AI and LLM integrations across the enterprise with an accent on secure API patterns, data governance, and regulatory alignment. Focus on mitigating AI-specific threats like prompt injection and ensuring compliance with financial regulations such as GLBA and PCI DSS.

Location: Hybrid in Atlanta, Georgia. Must be legally authorized to work in the U.S. without sponsorship.

Company

hirify.global is a technology company transforming how financial institutions deliver Intelligent Banking experiences through an API-first architecture.

What you will do

• Define secure integration patterns for third-party AI and LLM services, including API security and secrets management.
• Establish governance controls, prompt handling standards, and data classification guardrails for AI applications.
• Build an AI security risk framework aligned with regulatory obligations like GLBA, PCI DSS 4.0.1, DORA, and NYDFS.
• Identify and mitigate AI-specific risks including prompt injection, model manipulation, and data leakage.
• Partner with engineering, product, and cloud teams to embed security-by-design into AI integrations.
• Monitor the AI threat landscape and translate emerging risks into practical engineering and governance responses.

Requirements

• Bachelor's degree in Computer Science, Information Security, Engineering, or equivalent practical experience.
• 7+ years of experience in security engineering, application security, or cloud security.
• Hands-on experience securing cloud-native environments (AWS, Azure, or GCP).
• Working knowledge of AI/ML security risks, including OWASP LLM Top 10 and MITRE ATLAS.
• Experience securing integrations with LLM service providers such as Azure OpenAI, AWS Bedrock, or Anthropic.
• Must be legally authorized to work in the U.S. without sponsorship.

Nice to have

• Professional certifications: CISSP, CCSP, AWS Security Specialty, AZ-500, or Google Professional Cloud Security Engineer.
• Experience working in regulated financial services.
• Specialized AI certifications: CAISP, CAISS, or AIGP.
• ISO/IEC 42001 Lead Implementer or Lead Auditor certification.