Title: AI Security Engineer Location: Remote Job Description: Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. As we continue to grow, we’re looking for a skilled AI Security Engineer to join our dynamic team and contribute to our mission of transforming business processes through technology. This is a fantastic opportunity to join an established and well-respected organization offering tremendous career growth potential. AI Security Engineer Job Title: AI Security Engineer Location: 100% Remote (Continental United States) Position Type: In-house Bright Vision Technologies SOW engagement (no third-party client or vendor) Experience: 6+ years Sponsorship: No new H1B sponsorship available. H1B transfers welcomed for qualified candidates. Employment Type: Full-time, direct W2 with Bright Vision Technologies (no C2C, no 1099, no third-party) Engagement: Long-term, multi-year, aligned to the Bright Vision SOW delivery roadmap Compensation: Competitive base salary commensurate with experience, plus benefits. Employment Terms & Visa Policy This is a 100% remote, full-time, direct W2 position with Bright Vision Technologies. This role is part of Bright Vision Technologies’ in-house Statement of Work (SOW) engagement. The client, end customer, and employer for this position is Bright Vision Technologies — there is no third-party client, vendor, or implementation partner involved. We do not engage in C2C, 1099, or third-party arrangements for this role. BUT STRICTLY NO C2C/1099/3RD PARTY COMPANIES. ALL OUR ROLES ARE W2 AND NO 3RD PARTY BROKERING PLEASE. Candidates must be willing to work directly as a full-time W2 employee of Bright Vision Technologies and contribute to our in-house SOW deliverables. No new H1B sponsorship is available for this role. However, candidates who are currently on a valid H1B visa and require a transfer are welcome to apply. We will support H1B transfers for qualified candidates. For every role, a technical coding assessment is mandatory. Please apply only if you are confident in your technical abilities and hands-on experience. Job Summary We are seeking an AI Security Engineer to lead the design and implementation of security controls, threat models, and incident response capabilities specifically tailored to AI and machine learning systems. The role addresses the unique security challenges posed by LLMs, model APIs, training data pipelines, and AI-powered applications, including prompt injection, model abuse, data exfiltration, and supply chain risks. The ideal candidate has strong security engineering fundamentals and a deep understanding of how modern AI systems work in practice, with hands-on experience designing defenses for both AI-powered applications and the AI infrastructure that supports them. Key Responsibilities - Define and implement security controls specifically targeting LLM and AI-powered application risks. - Build threat models for AI systems, including prompt injection, jailbreaks, data exfiltration, and abuse patterns. - Design and deploy guardrails, content filters, and policy enforcement layers around model endpoints. - Implement runtime detection and response capabilities for adversarial prompts and abusive behavior. - Secure training and fine-tuning pipelines, including data provenance, integrity, and access controls. - Design controls for sensitive data handling, retention, and redaction in LLM workflows. - Lead red-team exercises against AI systems and drive remediation of identified weaknesses. - Evaluate and harden third-party AI services and open-source AI components used internally. - Implement identity, authorization, and tenant-isolation patterns for multi-tenant AI services. - Drive supply chain security for ML artifacts including weights, datasets, and inference dependencies. - Collaborate with privacy, legal, and compliance teams to ensure AI systems meet regulatory obligations. - Develop monitoring, logging, and detection strategies tailored to AI workloads. - Lead incident response for AI-specific security events and drive durable improvements. - Stay current with adversarial ML, LLM security research, and emerging regulatory developments. Required Qualifications - Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related discipline. - Six or more years of security engineering experience, including significant work on AI or ML systems. - Strong understanding of LLM internals, modern AI architectures, and common failure modes. - Hands-on experience designing security controls for AI-powered applications. - Deep knowledge of application security, identity, and cryptography fundamentals. - Experience with threat modeling and security architecture review processes. - Familiarity with adversarial ML, prompt injection, and model abuse research. - Proficiency in Python and at least one systems language. - Strong understanding of cloud security and modern infrastructure controls. - Excellent written and verbal communication skills. Preferred Qualifications - Publications, talks, or CTF participation in AI security topics. - Experience with red-teaming LLM-based products. - Familiarity with privacy-preserving ML techniques such as differential privacy. - Exposure to regulated industries with strict data handling requirements. - Open-source contributions to AI security tooling. How to Apply Would you like to know more about this opportunity? For immediate consideration, please send your resume to [email protected] or contact us at (908) 505-3544. Learn more about Bright Vision Technologies at www.bvteck.com. We recognize that our people are our strength, and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Bright Vision Technologies is an Equal Opportunity Employer, including Disability/Veterans. Position offered by “No Fee Agency.” Equal Employment Opportunity (EEO) Statement Bright Vision Technologies (BV Teck) is committed to equal employment opportunity (EEO) for all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, veteran status, or any other protected status as defined by applicable federal, state, or local laws. This commitment extends to all aspects of employment, including recruitment, hiring, training, compensation, promotion, transfer, leaves of absence, termination, layoffs, and recall. BV Teck expressly prohibits any form of workplace harassment or discrimination. Any improper interference with employees' ability to perform their job duties may result in disciplinary action up to and including termination of employment.

• Endpoint Data Analysis: Lead the team in analyzing data from Tanium modules (Asset, Discover, and Inventory) to identify unauthorized hardware, software discrepancies, and gaps in enterprise visibility. • Vulnerability & Compliance Assessment: Interpret results from the Comply and Patch modules to perform deep-dive analysis into the organization’s attack surface. Prioritize remediation efforts based on risk scoring, exploitability, and mission impact. • Threat Hunting & Pattern Recognition: Utilize the Threat Response and Impact modules to analyze Indicators of Compromise (IoCs). Conduct trend analysis to identify recurring threat vectors and suspicious endpoint behavior. • Cross-Functional Impact Analysis: Analyze USCC and DCDC directives to determine the specific operational risks to enterprise systems. Translate these directives into technical queries and monitoring strategies. • Intel & IoC Management: Evaluate intelligence feeds to identify relevant IoCs. Manage the lifecycle of these indicators within the Tanium platform, ensuring detection logic is refined to reduce false positives. • ACEM Analytics: Monitor Automated Continuous Endpoint Monitoring (ACEM) outputs to provide real-time situational awareness of the network's security posture. • Reporting and Documentation: Manage and generate cybersecurity RMF artifacts such as System Security Plans, POA&M (Plans of Action & Milestones), and security CONOPS (Concept of Operations). • Executive Dashboards: Design and manage Trend boards to communicate complex security metrics to leadership, focusing on long-term risk reduction and security posture maturation. • Continuous Process Improvement: Regularly review and update vulnerability management processes and procedures (SOP) based on lessons learned from routine and event-oriented incidents in accordance with DoD regulations, directives, and industry best practices. • Excellent communication skills along with Team management able to do planning and scheduling with team members.

Title: SAP Security Engineer (GRC – Technical) Location: Remote Full Time Experienced Job Description: Bright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. As we continue to grow, we’re looking for a skilled SAP Security Engineer (GRC – Technical) to join our dynamic team and contribute to our mission of transforming business processes through technology. This is a fantastic opportunity to join an established and well-respected organization offering tremendous career growth potential. SAP Security Engineer (GRC – Technical) Job Title: SAP Security Engineer (GRC – Technical) Location: 100% Remote (Continental United States) Position Type: In-house Bright Vision Technologies SOW engagement (no third-party client or vendor) Experience: 5+ years Sponsorship: No new H1B sponsorship available. H1B transfers welcomed for qualified candidates. Employment Type: Full-time, direct W2 with Bright Vision Technologies (no C2C, no 1099, no third-party) Engagement: Long-term, multi-year, aligned to the Bright Vision SOW delivery roadmap Compensation: Competitive base salary commensurate with experience, plus benefits. Employment Terms & Visa Policy This is a 100% remote, full-time, direct W2 position with Bright Vision Technologies. This role is part of Bright Vision Technologies’ in-house Statement of Work (SOW) engagement. The client, end customer, and employer for this position is Bright Vision Technologies — there is no third-party client, vendor, or implementation partner involved. We do not engage in C2C, 1099, or third-party arrangements for this role. BUT STRICTLY NO C2C/1099/3RD PARTY COMPANIES. ALL OUR ROLES ARE W2 AND NO 3RD PARTY BROKERING PLEASE. Candidates must be willing to work directly as a full-time W2 employee of Bright Vision Technologies and contribute to our in-house SOW deliverables. No new H1B sponsorship is available for this role. However, candidates who are currently on a valid H1B visa and require a transfer are welcome to apply. We will support H1B transfers for qualified candidates. For every role, a technical coding assessment is mandatory. Please apply only if you are confident in your technical abilities and hands-on experience. Job Summary We are seeking an experienced SAP Security and GRC (Governance, Risk, and Compliance) Engineer to design, implement, and operate security and access-control frameworks for complex SAP landscapes, including S/4HANA, ECC, BW/4HANA, Fiori, BTP, and SuccessFactors. In this role you will be responsible for SAP role design, user provisioning, segregation-of-duties analysis, audit support, and the technical operation of SAP GRC suites. The ideal candidate will combine deep expertise in SAP authorization concepts with strong hands-on experience operating SAP GRC Access Control and Process Control, and will partner closely with audit, compliance, and business teams to deliver a secure, auditable SAP environment. Key Responsibilities - Design and maintain SAP authorization concepts and role structures aligned with business processes and least-privilege principles. - Build and maintain master, derived, composite, and business roles for S/4HANA, ECC, and Fiori applications. - Configure and operate SAP GRC Access Control (ARA, ARM, BRM, EAM), including ruleset management, mitigating controls, and emergency access management. - Perform segregation-of-duties analysis and remediation in collaboration with business process owners and internal audit. - Configure user provisioning workflows in SAP GRC ARM, including request types, approval paths, and integration with IDM/IAM platforms. - Operate SAP GRC Process Control for continuous controls monitoring and policy management. - Implement security for Fiori applications, including catalogs, groups, and front-end authorizations. - Configure and operate security for SAP BTP and cloud applications using XSUAA, IAS, and IPS. - Support SAP audits (SOX, GxP, PCI) and respond to audit findings with documented remediation plans. - Implement transport security, table logging, and audit logging in line with internal security policies. - Monitor and remediate SAP Security Notes in coordination with Basis and DBA teams. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures — so that the system remains supportable, auditable, and easy to onboard new engineers onto over time. - Mentor junior team members and support knowledge transfer across the security team. Required Qualifications - Bachelor’s degree in Computer Science, Engineering, or a related technical discipline. - Five or more years of SAP Security / GRC experience in enterprise landscapes. - Strong hands-on experience with SAP authorization concepts and role design. - Deep experience operating SAP GRC Access Control (ARA, ARM, BRM, EAM). - Experience supporting SAP audits and remediation activities. - Hands-on experience securing Fiori, BTP, and cloud SAP applications. - Familiarity with SAP IDM or third-party IGA tooling. - Working knowledge of SAP Process Control. - Strong understanding of regulatory frameworks such as SOX, GxP, and PCI. - Excellent communication and documentation skills. Preferred Qualifications - SAP-certified Security or GRC credentials. - Experience with SAP Cloud Identity services (IAS, IPS) and SCIM-based integrations. - Familiarity with HANA security and analytic privileges. - Experience with continuous controls monitoring frameworks. - Exposure to SAP RISE / Grow security operating models. How to Apply Would you like to know more about this opportunity? For immediate consideration, please send your resume or contact us. Learn more about Bright Vision Technologies at www.bvteck.com. We recognize that our people are our strength, and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Bright Vision Technologies is an Equal Opportunity Employer, including Disability/Veterans. Position offered by “No Fee Agency.” Equal Employment Opportunity (EEO) Statement Bright Vision Technologies (BV Teck) is committed to equal employment opportunity (EEO) for all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, veteran status, or any other protected status as defined by applicable federal, state, or local laws. This commitment extends to all aspects of employment, including recruitment, hiring, training, compensation, promotion, transfer, leaves of absence, termination, layoffs, and recall. BV Teck expressly prohibits any form of workplace harassment or discrimination. Any improper interference with employees' ability to perform their job duties may result in disciplinary action up to and including termination of employment.

• Serve as the primary point of contact for customers after implementation. • Manage the subscription renewal pipeline and maintain cognizance of customer health in order to proactively eliminate barriers to adoption and value. • Participate with the Sales team to provide a strong customer-focused sales, orientation, and launch engagement process. • Develop a deep, trusting relationship with customer key personnel and larger teams to seek and develop up-sell / cross-sell opportunities. • Coordinate and conduct meetings between customers and Saviynt cross-functional teams to solve problems and advance customer adoption; ensure post-meeting follow-ups and action-item completion. • Monitor and identify product utilization trends, providing feedback to Saviynt cross-functional teams to support continuous improvement -- finding ways to better support customer use cases and corporate identity strategies. • Communicate with implementation Partners supporting Saviynt customers and seek opportunities to improve outcomes and relationships in the context of customer adoption. • Plan education for customers on new features and releases. • Act as the voice of the customer and collect feedback to drive continuous improvement across all areas including product.