Humans create, machines work
AI Architect – AI for Security
Location
Romania
Posted
23 days ago
Salary
0
Seniority
Senior
Job Description
AI Architect – AI for Security
Neurons Lab
• Join joint working sessions with the client's hands-on security engineers; challenge and harden their AI-driven offensive pipeline end-to-end (recon → verification → AI-planned exploitation → sandboxed execution). • Design and refine the exploitation agent: how the LLM plans attack paths, selects and validates exploits, and orchestrates parallel sandboxes safely and reproducibly. • Optimise cost-per-finding of the existing exploitation pipeline: benchmark local / sovereign open models (Kimi, GPT-OSS, MiniMax, DeepSeek) against frontier models for the recon, exploitation and analysis loops; quantify accuracy / latency / cost trade-offs and recommend hardware sizing. • Shape the runtime anomaly-detection layer: define which intrusion / privilege-escalation precursor patterns are worth collecting (signal over raw-log volume), and design the missing pieces — automated response (kill a malicious process / disable an account on detection) and triage routing by criticality. • Stand up a quick-win PoC to anchor the engagement — e.g. an automated dependency / PR vulnerability-scanning pass, or a head-to-head local-vs-frontier benchmark of the exploitation agent. • Turn findings into a defensible technical proposal and roadmap; present methodology and trade-offs to a technical CISO / CTO audience. • Keep all sensitive work build-time and in-perimeter — no pushing intellectual property, configs, or recon-enabling data to external model providers; respect regulated-gaming certification constraints (no uncertified AI in runtime-critical paths).
Job Requirements
- Hands-on offensive security: vulnerability research, exploit development and chaining, web + network penetration testing; fluent with Nmap, Nuclei, Katana, Acunetix, Metasploit, Burp Suite and Kali tooling.
- Building and operating LLM agents for security work — agentic tool-use, sandbox orchestration, prompt / flow design for recon and exploitation, guardrails for autonomous exploitation.
- Local / self-hosted open models: running and tuning open weights (Kimi, GPT-OSS, MiniMax, DeepSeek) on rented or private GPU; quantization, throughput and the agentic-performance trade-offs that matter for security automation.
- Exploit & threat intelligence: sourcing and validating exploits (including from underground / forum sources), CVE triage, exploitability and severity assessment.
- Runtime detection: designing intrusion / privilege-escalation pattern detection, anomaly detection, and automated response.
- Cloud security (AWS preferred): sandboxing, container isolation, secure inference hosting.
- Writes their own code (Python + shell) and can explain methodology to non-security executives.
- Modern offensive-security methodology and the current exploit / zero-day landscape.
- Strengths and limits of frontier vs. local LLMs for security automation (agentic tool-use, reasoning depth, cost-per-task).
- Data-egress / sovereignty constraints: why IP and recon-enabling data must stay in-perimeter; private-cloud (AWS Bedrock) vs. rented-hardware trade-offs.
- iGaming / regulated-infrastructure context and certification constraints (build-time vs. run-time AI) — strong plus.
- Defensive side — SIEM, anomaly detection, incident response — plus.
Benefits
- Health insurance
- Competitive salary
- Flexible working hours
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Senior Security Engineer
NVIDIANVIDIA is committed to fostering a diverse work environment and proud to be an equal opportunity employer. As we highly value diversity in our current and future employees, we do not discriminate (including in our hiring and promotion practices) on the basis of race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law.
• Focus on building and operating the data platform that powers security operations across NVIDIA. • Design and operate telemetry ingestion pipelines that collect and process data from endpoint, identity, network, cloud, and other enterprise security sources. • Normalize and enrich telemetry into structured datasets using standardized schemas and entity models so signals from different systems can be correlated consistently. • Build and maintain data models and graph ready structures that connect users, devices, identities, and activity across the security ecosystem. • Provide governed access to security datasets through APIs, query interfaces, and streaming pipelines used by Detection, Automation, AI, and Analytics teams. • Define lifecycle and retention strategies across hot, cold, and archive storage tiers to balance performance, scalability, and cost. • Work closely with enterprise data engineering and security engineering teams to align on architecture, data fabric strategy, and shared platform capabilities. • Maintain clear documentation of data sources, schemas, and entity definitions so teams across NVIDIA can reliably build on the platform.
Principal Security Architect, Agent Policy Fabric
NVIDIANVIDIA is committed to fostering a diverse work environment and proud to be an equal opportunity employer. As we highly value diversity in our current and future employees, we do not discriminate (including in our hiring and promotion practices) on the basis of race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law.
• Define the cross-company reference architecture for governed agent actions, including durable policies, runtime controls, adapter boundaries, credential mediation, detector response, audit correlation, failure modes, and production-readiness criteria. • Translate Agent Policy Fabric concepts into executive-ready decision papers, engineering standards, threat models, control objectives, and implementation achievements without treating working-draft architecture as a pre-decided product direction. • Partner with Product Security, OpenShell, Omnistation, Identity, IT, Fleet/MDM, SecOps, 3S, legal/privacy, and corporate-resource owners to define who owns each control surface and how agent workflows move from proof-of-life to enterprise pilot. • Establish review patterns for agent workflows, including policy authoring, approval, signing, runtime admission, credential issuance, direct-egress controls, audit evidence, managing anomalies, and break-glass procedures. • Brief senior leaders, customer-facing teams, and partner engineering teams on NVIDIA's agent security posture, APF maturation path, open decisions, known limitations, and the evidence required before broader deployment.
• Implement and lead internal initiatives that reinforce the security program’s commitment to security. • Collaborate closely with internal teams—including security awareness and training, communications, and executive leadership. • Develop and promote initiatives that embed security values and achievements throughout the organization. • Ensure the organization’s security values are visible, trusted, and respected by internal and external stakeholders. • Help shape a strong security culture at Jamf by being an advocate or “security champion”. • Support business growth and strengthen the organization’s reputation with customers and business partners. • Develop content and communication strategies to engage Jamf employees at all levels. • Establish and monitor mechanisms for employees to report security issues or concerns. • Collaborate with awareness and training personnel to develop training material on the value of security as a business enabler. • Develop and monitor KPIs and metrics to gauge the success of the program. • Position the organization as an industry leader in security by promoting expert insights, white papers, and speaking engagements for security leaders. • Coordinate participation in industry events, conferences, and panels to strengthen brand presence and authority in cybersecurity.
Senior Security Researcher, Phishing
SpyCloudThe leader in operationalizing Cybercrime Analytics to prevent ATO, ransomware, and online fraud.
• Data Collection: Locate, target and recapture data from Phishing-as-a-Service (PhaaS) kits using a combination of human intelligence and platform sourcing. • Data Analysis: Apply data science techniques to understand the quality of sourced data, in order to refine and improve the PhaaS data sourcing pipeline. • Human Intelligence: Perform human intelligence techniques such as managing multiple alternate personas, actor engagements, and social engineering in support of data recapture efforts. • Security Analysis: Participate in the drafting of research blogs and analytical products to support customers and business objectives. • Security Research: Participate in security research including investigation of threat actors, PhaaS, and other critical research in support of SpyCloud’s priorities.



