Role Description We are looking for a Principal AI Security Engineer to lead the design, implementation, and continuous improvement of security controls across Generative AI, Large Language Models (LLMs), AI agents, and MLOps ecosystems. This role is ideal for a cybersecurity professional with strong cloud security expertise and hands-on experience securing AI-powered platforms and enterprise-scale environments. You will partner closely with engineering, platform, compliance, risk, and security teams to establish AI security best practices, implement governance frameworks, reduce attack surfaces, and ensure the responsible adoption of AI technologies across the organization. The ideal candidate combines deep cybersecurity expertise, cloud-native security knowledge, DevSecOps practices, and a strong understanding of emerging AI threats and mitigation strategies. Key Responsibilities - Design, implement, and maintain security controls for GenAI, LLM, AI Agent, and MLOps platforms. - Develop AI security guardrails, access controls, prompt protection mechanisms, and data protection strategies. - Lead AI-focused threat modeling initiatives and proactively identify security risks across AI systems. - Define and implement controls aligned with: - NIST AI Risk Management Framework (AI RMF) - ISO/IEC 42001 - OWASP LLM Top 10 - MITRE ATLAS - Collaborate with Red Teams and Security Operations teams to perform adversarial testing and security assessments. - Design incident response procedures and playbooks for AI-related security events. - Integrate AI platforms with secrets management, identity management, and cloud-native security solutions. - Deploy and maintain observability and monitoring capabilities for AI applications and model behavior. - Drive AI governance, security policies, compliance initiatives, and responsible AI adoption. - Partner with engineering teams to integrate security into CI/CD pipelines and development workflows. - Develop operational metrics, security reporting, and performance dashboards. - Participate in on-call rotations supporting critical enterprise platforms. - Mentor engineers and security professionals while serving as a subject matter expert on AI security. Qualifications - 6+ years of experience in Cybersecurity, Cloud Security, DevSecOps, Security Engineering, or related disciplines. - 3+ years of experience working with AI, GenAI, LLM, MLOps, or AI platform security. - Experience securing enterprise-scale cloud environments. - Experience designing and implementing security controls for modern distributed systems and cloud-native architectures. - Experience working with compliance, governance, risk, and audit teams. Technical Skills - AI & Security - Generative AI Security - Large Language Model (LLM) Security - AI Governance & Responsible AI - AI Threat Modeling - Adversarial Testing - Prompt Injection Protection - Model Security & Risk Management - AI Attack Surface Reduction - Security Incident Response - Security Frameworks - NIST AI RMF - ISO/IEC 42001 - OWASP LLM Top 10 - MITRE ATLAS - Security Governance - Risk Management - Vulnerability Management - Cloud & Infrastructure - AWS - Azure - Azure OpenAI - AWS Bedrock - GCP (preferred) - Cloud Security Architecture - CSPM / CNAPP Platforms - CIEM Solutions - DevSecOps & Automation - Terraform - Git - GitHub - CI/CD Pipelines - GitHub Actions - GitLab CI/CD - Jenkins - Infrastructure as Code (IaC) - Development & Data - Python, Java, Go, C#, or similar programming languages - API Security - REST APIs - Microservices Architecture - RDBMS Platforms - Vector Databases - System Integrations - Operating Systems & Identity - Linux Administration - Active Directory - LDAP - Secrets Management Solutions - Identity & Access Management (IAM) Soft Skills - Strategic thinking - Strong analytical and problem-solving skills - Leadership and mentoring capabilities - Excellent stakeholder management - Strong communication skills with technical and non-technical audiences - Ownership mindset - Ability to influence security decisions across organizations - Collaborative and cross-functional teamwork Education - Bachelor's degree in Computer Science, Cybersecurity, Information Technology, Engineering, or a related field. - Relevant security and cloud certifications are highly desirable. Additional Requirements - Advanced English (spoken and written) – mandatory. - Ability to work remotely across distributed teams. - Availability to collaborate with teams across LATAM and North America. - Experience in enterprise environments with strong governance and compliance requirements is highly preferred. Benefits - 🚀 Integration into global brands and disruptive startups. - 🏠 Remote work/Home office. - 📌 If a hybrid or onsite modality is required, you will be informed from the first interview session. - ⏰ Schedule aligned with the assigned project/workstream. - 📅 Monday to Friday work schedule. - 🎂 Day off on your birthday. - 🏥 Major medical insurance (applies to Mexico). - ❤️ Life insurance (applies to Mexico). - 🌎 Multicultural teams. - 📚 Access to courses and certifications. - 🎤 Meetups with special guests from the IT industry. - 🤝 Virtual integration events and communities of interest. - 🇺🇸 English classes. - 📈 Opportunities across our different business lines. - 🏆 Proudly certified as a Great Place to Work.

• Lead endpoint security engineering functions across global environments, ensuring robust monitoring and protection capability. • Provide advanced Carbon Black support, leveraging API engineering to enhance, optimize, and automate security processes and workflows. • Drive Cortex XDR and XSIAM support, actively participating in policy review and delivering critical implementation support for the SOC during the XSIAM migration and rollout. • Investigate and resolve potential performance concerns and resource conflicts related to security agents across diverse operating systems. • Design and execute deployment strategies for security agents, ensuring seamless upgrades and maximum coverage across all corporate endpoints. • Understand actual infrastructure pain points and translate them into concrete security configurations, avoiding generic or excessively broad policy approaches. • Keep security documentation and playbooks updated and organized, providing real visibility into rule configurations, exceptions, and agent health status. • Collaborate with core infrastructure teams, SOC, and IT support to define the right approach for agent rollouts, incident investigation, and policy tuning.

• You’ll help secure Prolific’s applications end-to-end, from hands-on testing and code review to threat modelling and CI/CD security. • You’ll partner closely with engineers to identify and fix vulnerabilities, build and tune security tooling, and embed secure development practices across the SDLC. • This includes running penetration tests, improving detection coverage, and staying ahead of emerging threats to continuously strengthen our security posture.

• Lead, develop, and mentor a talented sub-team of GRC professionals. • Personally conduct high-impact control walkthroughs, draft complex process narratives, design baseline control mappings for new architectures, and directly test critical systems. • Manage and scale compliance onboarding intake process by partnering early with Product, Engineering, and FinOps. • Personally lead and oversee rigorous internal testing of HubSpot’s highest-risk controls. • Build out and monitor key control health indicators (OKIs/PKIs).