Sr Security Engineer
Role Overview
We are seeking a highly skilled and experienced Senior Infrastructure Security Engineer to join our dynamic team. The ideal candidate will have 8-10 years of experience in the information security field.
The ideal candidate for this role will possess a unique blend of "hacker" and business acumen, effectively bridging these two crucial perspectives. We're looking for someone who can:
- Exhibit the curiosity and technical creativity of a hacker, constantly probing for vulnerabilities and thinking outside the box to identify potential security risks.
- Demonstrate the strategic thinking and communication skills of a business professional, translating technical findings into actionable business insights.
- Seamlessly switch between technical and business mindsets, wearing whichever "hat" is needed in any given situation.
- Use their hacker mentality to anticipate and simulate potential threats, while leveraging their business acumen to prioritize risks and allocate resources effectively.
- Communicate complex technical concepts to non-technical stakeholders, and translate business requirements into robust security strategies.
- Balance the need for stringent security measures with business objectives and user experience considerations.
This dual perspective will be crucial in developing comprehensive security solutions that not only protect our infrastructure but also align with and support our overall business goals. The ability to navigate and bridge these two worlds will be a key factor in succeeding in this role and driving our security initiatives forward.
What do you get from the role?
As part of this role, you will have the exciting opportunity to define and shape security standards for generative AI applications. You will:
- Assess potential security risks and vulnerabilities specific to GenAI systems
- Develop and implement robust security frameworks tailored for GenAI applications
- Create guidelines for secure development, deployment, and operation of GenAI models
- Collaborate with AI teams to integrate security measures throughout the GenAI lifecycle
- Establish protocols for data privacy, model integrity, and output verification in GenAI systems
- Explore innovative ways to leverage GenAI for enhancing cybersecurity measures
- Stay at the forefront of emerging threats and best practices in AI security
This unique opportunity allows you to pioneer security practices in the rapidly evolving field of generative AI, positioning you as a leader in this cutting-edge intersection of AI and cybersecurity.
Responsibilities
- Act as a hands-on expert for security technologies and controls, ensuring performance, operability, and scalability.
- Develop, implement, and maintain security measures across Ema’s AI systems and applications.
- Act as an internal expert to technology and business groups, supporting the adoption of cutting-edge security practices.
- Build and maintain strong relationships with developers, technology teams, and business application owners to foster a security-first culture.
- Formulate, implement, and enforce industry best practices for information security.
- Collaborate with key technical experts, technology teams, and external industry groups to resolve complex technical issues and achieve security goals.
- Present security findings and proposed solutions to internal teams and external customers
- Stay current with emerging security threats and industry best practices
- Collaborate with cross-functional teams to ensure security measures align with business objectives
- Ensure compliance with international standards and robust data protection measures.
- Provide mentorship and guidance to junior security team members
- Participate in incident response and forensic analysis as needed
Qualifications
- Bachelor's degree in Computer Science, Information Security, or related field
- 8-10 years of experience in infrastructure security engineering
- Experience with cloud platforms (AWS, Azure, GCP)
- In-depth knowledge of network security, cloud security, and cybersecurity frameworks
- Strong experience with security tools and technologies (e.g., firewalls, IDS/IPS, SIEM)
- Proficiency in scripting languages (e.g., Python, PowerShell)
- Excellent analytical and problem-solving skills
- Strong communication and presentation abilities. Comfortable presenting to executives, customers and partners.
- Relevant certifications (e.g., CISSP, CEH, GIAC) and standard (e.g., GDPR, SOC, NIST, ISO 27001, PCI DSS)
- Familiarity with DevSecOps practices
- Any experience with AI/GenAI is a big plus.