Plus
Включить Plus
Назад
Company hidden
14 часов назад

Cybersecurity Application Security Engineer (AI)

90 000 - 125 000$
Формат работы
remote (только USA)/hybrid
Тип работы
fulltime
Грейд
middle
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Cybersecurity Application Security Engineer (AI): Performing manual source code reviews and implementing SAST/DAST scanning to secure the SDLC with an accent on AI/LLM-integrated features and threat modeling. Focus on integrating security tooling into CI/CD pipelines and identifying vulnerabilities such as prompt injection and model-data leakage.

Location: Remote or Hybrid (US). Must be a US Citizen to obtain required government security clearance; no visa sponsorship provided.

Salary: $90,000–$125,000 annually

Company

A diversified corporation specializing in student loan servicing, payment processing, and education services.

What you will do

  • Conduct manual source code reviews and execute SAST/DAST scanning.
  • Develop automated source code review processes and integrate security checks into CI/CD pipelines.
  • Expand the Security Champions program and guide product teams through secure SDLC processes.
  • Perform threat modeling using STRIDE and attack trees for traditional and AI-integrated systems.
  • Analyze AI/LLM attack surfaces, including prompt injection and RAG vulnerabilities.
  • Provide detailed vulnerability reports and communicate risks to management and engineering staff.

Requirements

  • 2–4 years of hands-on application security experience.
  • US Citizenship is mandatory for US Government security clearance.
  • Proficiency in at least one major language (Java, JavaScript/TypeScript, C#, or PHP) for manual code review.
  • Strong knowledge of OWASP Top 10, web/API security, and container scanning.
  • Experience with scripting in Python, Bash, or Node for security automation.
  • Authorized to work in the US without current or future sponsorship.

Nice to have

  • Previous experience with AI/LLM model security or prompt safety.
  • Expertise in mobile security and reverse engineering.
  • Certifications such as OSWE, OSCP, GWAPT, GCSA, GCPN, or ML security certifications.
  • Experience mentoring junior developers in secure design practices.

Culture & Benefits

  • Comprehensive health package including medical, dental, vision, HSA, and FSA.
  • Financial perks: 401K, student loan repayment, and employee stock purchase program.
  • Generous earned time off and tuition reimbursement.
  • Performance-based incentive pay and a robust wellness program.
  • Hybrid work flexibility for those living within 30 miles of an office.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →