• Design and implement security measures to protect cloud and on-premises infrastructure. • Identify and remediate vulnerabilities in cloud environments, networks, and operating systems. • Build and maintain cloud and infrastructure security tools. • Perform security reviews, threat modeling and risk assessments of infrastructure components. • Develop and maintain security guidelines for Network and SRE teams. • Collaborate with Network and SRE teams to integrate security best practices into their processes and systems. • Stay updated on the latest security threats, vulnerabilities, and mitigation techniques. • Serve as an network and infrastructure security subject matter expert to other teams.

LiveRamp is the data collaboration platform of choice for the world’s most innovative companies. A groundbreaking leader in consumer privacy, data ethics, and foundational identity, LiveRamp is setting the new standard for building a connected customer view with unmatched clarity and context while protecting precious brand and consumer trust. LiveRamp offers complete flexibility to collaborate wherever data lives to support the widest range of data collaboration use cases—within organizations, between brands, and across its premier global network of top-quality partners. Hundreds of global innovators, from iconic consumer brands and tech giants to banks, retailers, and healthcare leaders turn to LiveRamp to build enduring brand and business value by deepening customer engagement and loyalty, activating new partnerships, and maximizing the value of their first-party data while staying on the forefront of rapidly evolving compliance and privacy requirements. LiveRamp is the leading data connectivity platform. Connecting data has the power to change the world. Our platform powers insights and experiences centered on the needs of real people, keeping the Internet open for all. LiveRampers thrive on building together with curiosity and humility—and having a good bit of fun along the way. We always seek smart, kind, and creative people to grow our team and impact. Mission: LiveRamp makes it safe and easy for businesses to use data effectively. LiveRamp is seeking a skilled, versatile Senior Security Engineer to advance and grow our detection and automation initiatives. Reporting to the Senior Manager of Security Engineering and Operations, this role will collaborate with cross-functional teams and external partners to mitigate risks and implement security measures that safeguard sensitive data and systems against infiltration and cyberattacks. The position will also lead our incident response efforts and the development of threat detection platforms. You will: - Implement threat detection logic across various security platforms, including SIEM, and other security platforms as needed. - Utilize threat modeling and threat-based thinking to construct and prioritize detection use cases. - Automate security workflows to streamline threat detection, including alert enrichment, triage, and response. - Develop scalable data pipelines and logging infrastructure within our cloud environments using IaC. - Act as an escalation point for incident response and conduct technical analysis when needed. - Troubleshoot issues related to detection coverage, telemetry ingestion, and automation logic across multiple security platforms. - Create and maintain architecture diagrams, data flow documentation, and standard operating procedures related to cloud infrastructure and detection pipelines. - Collaborate with peer security teams and stakeholders to enhance organizational maturity. - Build, maintain, and secure cloud infrastructure across multi-cloud environments, ensuring alignment with best practices for IAM, network segmentation, and monitoring. Your team will: - Advance LiveRamp’s detection and response capabilities by focusing on engineering, automation, and integration with core infrastructure. - Design and implement security automation to reduce alert fatigue and improve mean-time-to-response across Cloud, SaaS, and Endpoint security tooling - Continuously enhance SIEM and cloud-native logging and monitoring pipelines to enable high-fidelity detections across corporate and production environments. - Identify and implement scalable approaches to strengthen cloud and infrastructure security through detections, configurations, and automation. About you: - Bachelor’s degree in a relevant technical discipline (e.g., Cyber Security, Computer Engineering, Computer Science, or equivalent experience). - Familiarity with security automation/orchestration platforms (SOAR), or equivalent tooling (Google Cloud Functions, AWS Lambda, etc.) - You are always looking for automation opportunities, and don’t like “solving the same problem twice”. - Working knowledge in securing and monitoring public cloud environments (e.g., AWS, GCP, Azure), interested in applying cloud-native detection and automation capabilities. - Experienced in developing simple tooling with Python or similar programming with strong debugging skills. - Working knowledge of network and infrastructure security technologies such as firewalls, web proxies, IDS/IPS, and their role in enterprise defense. - Clear and concise written and verbal communication, with a strong emphasis on documentation and knowledge sharing. - Passionate about security, curious about the threat landscape, and eager to build scalable detection and automation capabilities. The approximate annual base compensation range is $127,000 to $145,000. The actual offer, reflecting the total compensation package and benefits, will be determined by a number of factors including the applicant's experience, knowledge, skills, and abilities, geography, as well as internal equity among our team. Benefits: - People: Work with talented, collaborative, and friendly people who love their work. - Work/Life Harmony: Flexible paid time off, paid holidays, options for working from home, and paid parental leave. - Whole Health Package: Medical, dental, vision, life, disability, long-term care, accident, critical illness insurance, pre-tax accounts (health, dependent, and commuter), and a family-forming benefit through Carrot. Plus Milk Stork, backup child and elder care, a discount on pet insurance, and mental health support (via Talkspace) - FlexPerks reimbursement program to provide flexibility and choice ($375/quarter) for fitness, emotional, financial, family, travel, entertainment, convenience, and security expenses. (U.S. LiveRampers) - Savings: Our 401 (k) matching plan—1:1 up to 6% of salary—helps you save. Also, Employee Stock Purchase Plan - 15% discount off the purchase price of LiveRamp stock (U.S. LiveRampers) - RampRemote: A comprehensive office equipment and ergonomics program—we provide you with equipment and tools to be your most productive self, no matter where you're located - Location: Remote More about us: LiveRamp’s mission is to connect data in ways that matter, starting with our people. We know that inspired teams enlist people from diverse backgrounds and experiences. We know that individuals do their best when they bring their whole selves to work and feel a sense of belonging. Connecting LiveRampers to new ideas and one another is one of our guiding principles that informs how we hire, train, and grow our global team across nine countries and four continents. Click here to learn more about Diversity, Inclusion, & Belonging (DIB) at LiveRamp. LiveRamp is an affirmative action and equal opportunity employer (AA/EOE/W/M/Vet/Disabled) and does not discriminate in recruiting, hiring, training, promotion or other employment of associates or the awarding of subcontracts because of a person's race, color, sex, age, religion, national origin, protected veteran, disability, sexual orientation, gender identity, genetics or other protected status. Qualified applicants with arrest and conviction records will be considered for the position in accordance with the San Francisco Fair Chance Ordinance. California residents: Please see our California Personnel Privacy Policy for more information regarding how we collect, use, and disclose the personal information you provide during the job application process. To all recruitment agencies: LiveRamp does not accept agency resumes. Please do not forward resumes to our jobs alias, LiveRamp employees, or any other company location. LiveRamp is not responsible for any fees related to unsolicited resumes. #LI-Remote Benefits: - People: Work with talented, collaborative, and friendly people who love what they do. - Fun: We host in-person and virtual events such as game nights, happy hours, camping trips, and sports leagues. - Work/Life Harmony: Flexible paid time off, paid holidays, options for working from home, and paid parental leave. - Comprehensive Benefits Package: LiveRamp offers a comprehensive benefits package designed to help you be your best self in your personal and professional lives. Our benefits package offers medical, dental, vision, life and disability, an employee assistance program, voluntary benefits as well as perks programs for your healthy lifestyle, career growth and more. - Savings: Our 401K matching plan—1:1 match up to 6% of salary—helps you plan ahead. Also Employee Stock Purchase Plan - 15% discount off purchase price of LiveRamp stock (U.S. LiveRampers) - RampRemote: A comprehensive office equipment and ergonomics program—we provide you with equipment and tools to be your most productive self, no matter where you're located More about us: LiveRamp’s mission is to connect data in ways that matter, and doing so starts with our people. We know that inspired teams enlist people from a blend of backgrounds and experiences. And we know that individuals do their best when they not only bring their full selves to work but feel like they truly belong. Connecting LiveRampers to new ideas and one another is one of our guiding principles—one that informs how we hire, train, and grow our global team across nine countries and four continents. Click here to learn more about Diversity, Inclusion, & Belonging (DIB) at LiveRamp. LiveRamp is an affirmative action and equal opportunity employer (AA/EOE/W/M/Vet/Disabled) and does not discriminate in recruiting, hiring, training, promotion or other employment of associates or the awarding of subcontracts because of a person's race, color, sex, age, religion, national origin, protected veteran, disability, sexual orientation, gender identity, genetics or other protected status. Qualified applicants with arrest and conviction records will be considered for the position in accordance with the San Francisco Fair Chance Ordinance. We use automated decision systems (ADS) as part of our recruitment and hiring process. If you require an accommodation or believe that the use of an ADS may create a barrier to your application or participation in the hiring process due to a disability or other protected characteristic, please let us know. We are committed to providing reasonable accommodations and ensuring an equitable hiring experience for all candidates. California residents: Please see our California Personnel Privacy Policy for more information regarding how we collect, use, and disclose the personal information you provide during the job application process. To all recruitment agencies: LiveRamp does not accept agency resumes. Please do not forward resumes to our jobs alias, LiveRamp employees or any other company location. LiveRamp is not responsible for any fees related to unsolicited resumes.

• Document AI system components and data flows, including prompts, context, embeddings, training data, model artifacts, outputs, and agent tool interactions. • In collaboration with the AI team, identify attack surfaces, trust boundaries, and privilege transitions within AI pipelines and agent workflows and perform structured threat modeling for AI systems during design, development, and change cycles in collaboration with the AI team. • In collaboration with the AI team, translate identified threats into concrete, relevant security requirements and engineering tasks in collaboration with the AI team. • Implement technical controls informed by established AI security frameworks (e.g., OWASP LLM Top 10, NIST AI RMF) according to compliance requirements and AI governance guidance. • Design, build, and maintain automated security testing for AI systems within CI/CD pipelines, supports testing for prompt injection, unsafe model behavior, misconfigured access, data exposure, and agent misuse. • Ensure AI security controls are validated during build, deployment, and change cycles, with failures surfaced early to engineering teams. • Implement technical guardrails to protect sensitive data used by AI systems, including retrieval of augmented generation (RAG) pipelines and external data sources. • In collaboration with the AI Team, Design and operate controls for sensitive data identification, minimization, redaction, and leakage prevention—addressing PII and other protected data in prompts, context, embeddings, and outputs to ensure privacy preserving AI operation in production environments. • Design, implement, and maintain security controls across the full AI/ML lifecycle—including data ingestion, training, evaluation, deployment, inference, and CI/CD—covering model artifacts, configurations, embeddings, prompts, and deployment patterns. • Implement and operate runtime safeguards for AI services and agent-based systems, including input and output controls, context isolation, tool use restrictions, and abuse prevention mechanisms (e.g., rate limiting and anomaly detection), ensuring safe operation without breaking functional requirements. • Design security controls that balance safety, system performance, reliability, and developer usability in production of AI services. • Implement and operate secure identity, secrets, and access control patterns for AI services, agents, and integrations, enforcing least privilege, integrating with enterprise IAM and key management systems, and monitoring credential usage and rotation. • Instrument AI systems to produce actionable logging, metrics, and traces; build dashboards and alerts for detecting prompt manipulation, anomalous usage, and unexpected behavior; and integrate AI specific signals into enterprise security operations workflows. • Embed with AI engineering and platform teams to design and maintain technical security controls; develop reusable security components and patterns; contribute documentation and runbooks; and, in collaboration with the AI team, communicate AI security requirements and remediation outcomes to technical, non-technical, and cross functional stakeholders.

• Design, develop, and maintain detection rules, alerts, and analytics to identify cybersecurity threats across endpoints, network, identity, cloud, and application platforms. • Collaborate with threat intelligence, threat hunting, and security operations teams to understand emerging threats and translate TTPs into actionable detections. • Continuously monitor the threat landscape and proactively recommend improvements to detection coverage and methodology. • Validate, test, and tune detection content to reduce false positives and improve accuracy, performance, and signal-to-noise ratio. • Partner with incident response teams to provide detection insights, improve alert fidelity, and support investigation workflows. • Maintain and enhance the organization’s detection repository within SIEM and detection platforms, ensuring content stays current with evolving attack techniques. • Develop and refine Data Loss Prevention (DLP) detection policies and monitoring use cases to protect sensitive data and support compliance requirements. • Identify detection gaps and raise risks, working with engineering and security stakeholders to prioritize remediation and improvements.