Zscaler logo
Zscaler

We make it easy to secure your cloud transformation. Get fast, secure, and direct access to apps without appliances.

Principal AI Security Specialist

Security EngineerSecurity EngineerFull TimeRemoteLeadTeam 5,001-10,000Since 2008H1B SponsorCompany SiteLinkedIn

Location

Netherlands

Posted

2 days ago

Salary

0

Seniority

Lead

Bachelor Degree10 yrs expEnglishCloudCyber Security

Job Description

Principal AI Security Specialist

Zscaler

• Architect the AI Technical Strategy: Partner with enterprise account teams to own and execute the technical sales strategy, driving complex, high-value AI security opportunities from discovery to close. • Deliver Compelling, High-Impact Demos & POVs: Configure and present tailored, outcome-driven demonstrations of Zscaler’s AI security platform that resonate with both deep-tech practitioners and C-level executives. When needed, take customers through successful demos and POVs to validate Zscaler’s ability to securely enable enterprise AI. • Serve as a Subject Matter Expert: Act as the field authority on modern AI patterns (such as RAG, agents, and prompt workflows), advising clients on how to prevent sensitive data exposure and unsanctioned AI usage. • Scale the Field Motion: Collaborate with Product and Engineering to inject real-world customer feedback into the product roadmap, while building reusable demo assets and enablement playbooks to upscale our global sales force. • Enable Those Around You: Develop reusable demos, technical assets, competitive positioning, and enablement content to help scale Zscaler’s AI field motion while sharing best practices and training with enterprise account teams

Job Requirements

  • Deep Fluency in AI/GenAI: Strong foundational knowledge of Large Language Models (LLMs), retrieval-augmented generation (RAG), MCP (Model Context Protocol) orchestration patterns, and the inherent security risks associated with them.
  • 10+ Years of Solutions Engineering Mastery: A proven track record in a customer-facing technical role (Sales Engineering, Solutions Architecture, or Technical Advisory) navigating complex, enterprise-level sales cycles.
  • Enterprise Security Foundations: Solid grasp of cybersecurity principles, including Zero Trust architecture, data loss prevention (DLP), cloud-native security platforms, and API integrations.
  • Elite Executive Communication: Exceptional presentation and storytelling skills, with a demonstrated ability to seamlessly translate complex AI architectures into tangible business value and security outcomes.
  • Collaborate and Co-elevate: Successfully work cross-functionally with Sales, Solutions Engineering, Product, Engineering, Marketing, and other go-to-market teams in a hyper-growth, rapidly evolving market.

Benefits

  • Various health plans
  • Time off plans for vacation and sick time
  • Parental leave options
  • Retirement options
  • Education reimbursement
  • In-office perks, and more!

Related Categories

Related Job Pages

More Security Engineer Jobs

Role Description inventYOU is looking for Cybersecurity Preparedness Support Experts to support cybersecurity readiness, technical security assessment and risk assessment activities for complex environments. The role focuses on: - Vulnerability assessment - Penetration testing - Infrastructure weakness analysis - Cybersecurity risk assessment - Threat hunting - Maturity assessment - Threat landscape analysis - Technical reporting Qualifications - Bachelor’s degree in Computer Science, Computer Engineering or equivalent - Intermediate level: at least 3 years of relevant professional experience - Senior level: at least 6 years of relevant professional experience - Experience in web application and network security testing - Experience in vulnerability assessment and/or penetration testing - Experience in infrastructure weakness analysis and technical reporting - Knowledge of cybersecurity risk assessment, risk treatment and remediation recommendations - Familiarity with threat hunting, threat landscape analysis, maturity assessment or risk scenarios - Familiarity with recognised frameworks or methodologies such as MITRE ATT&CK, ISO/IEC 31000, OCTAVE, CSIRT maturity frameworks or equivalent will be considered an asset - Very good command of English: B2 for Intermediate level, C1 for Senior level - For Senior level: proven project management skills Benefits - Join a people-focused technology company with an international mindset - Work on challenging projects for European clients and organisations - Be part of a collaborative and supportive team environment - Gain exposure to cybersecurity, technology and digital transformation projects - Develop your skills through hands-on experience and continuous learning - Work with experienced professionals across different business and technology domains

Greece
emerchantpay logo

Information Security Lead

emerchantpay

We’re on a mission to create a global payment ecosystem that connects businesses and consumers everywhere.

Full TimeRemoteTeam 201-500H1B No Sponsor

Role Description We are looking for an experienced Information Security Lead to own the design, implementation, and continuous improvement of information security across our cloud-native, DevOps-driven engineering environment, as well as our corporate IT and office infrastructure. The role combines hands-on technical delivery with security leadership. - Define and maintain the information security strategy, standards, and roadmap, aligned to applicable regulations, rules, and security best practices. - Steer security architecture across a cloud-native environment, defining secure-by-design patterns for microservices, APIs, and shared platform services. - Establish and govern secure software development lifecycle (secure SDLC) practices, embedding automated security controls into CI/CD pipelines. - Define and drive adoption of cloud security guardrails - identity, network segmentation, encryption, secrets management, and configuration baselines. - Build and run security monitoring, logging, and threat detection across cloud, infrastructure, and application layers. - Lead the security incident response lifecycle - preparation, detection, containment, eradication, recovery, and post-incident review - and act as incident commander for security events. - Own vulnerability and threat management: scanning, risk-based prioritization, remediation tracking, and reporting across infrastructure, containers, and application code. - Plan and coordinate penetration testing and offensive-security exercises (in-house or co-sourced) and drive findings to closure. - Govern identity and access management, privileged access, and least-privilege principles across cloud and corporate systems. - Define and oversee data protection controls - encryption, key management, data classification, and loss prevention - for sensitive and cardholder data. - Secure corporate IT and office infrastructure, including endpoints, networks, and productivity and collaboration platforms. - Partner with Engineering and DevOps teams to make the secure path the easy path, providing tooling, standards, threat modelling, and design reviews. - Provide security input into architecture and change decisions, including the adoption of new technologies and third-party services. - Run security awareness and phishing-resilience programs for technical and non-technical staff. - Implement and evidence the technical security controls underpinning PCI DSS, ISO 27001, and SOC audits. - Monitor the evolving threat landscape and emerging security technologies. - Act as a key member of the internal security center of excellence and contribute to cross-functional security working groups. - Build, lead, and mentor a small security team. - Report security posture, key risks, and metrics. Qualifications - Bachelor’s or master’s degree in computer science, information security, or a related field, or equivalent practical experience. - At least 10 years in information / cyber security, including a minimum of 2-3 years in a leadership role, with hands-on experience securing cloud-native environments at scale. - Deep, practical public-cloud security knowledge (AWS strongly preferred): identity, networking, encryption, logging, and configuration management. - Strong experience securing DevOps / CI/CD pipelines and modern microservices architectures - containers, APIs, and infrastructure-as-code. - Working knowledge of application security and secure SDLC across modern programming languages and web frameworks. - Hands-on experience with security operations, incident response, and vulnerability management. - Solid understanding of security frameworks and compliance standards relevant to payments: ISO 27001, PCI DSS, SOC 2, and NIST CSF. - Working AI security literacy, with hands-on use of AI-assisted security tooling (e.g., GenAI coding assistants, AI-augmented SAST/DAST and SIEM/SOC analytics) and a practical understanding of securing AI/LLM and agentic applications, including AWS AI services such as Amazon Bedrock and the OWASP Top 10 risks for LLMs (e.g., prompt injection and data leakage). - Strong analytical and problem-solving ability, with high integrity and sound judgement. - Excellent verbal and written communication skills, fluent English, and the ability to influence engineers with data, logic, and best practices. Requirements - Professional certification such as CISSP, CCSP, OSCP, AWS Security Specialty, or CISM. - Experience in a payments, fintech, banking, or other regulated environment. - Familiarity with operational-resilience expectations (e.g. DORA-style requirements). - Experience standing up a security function. Benefits - Fast-growing payment company; - Excellent working conditions, casual atmosphere, and state-of-the-art hardware; - Modern, challenging, constantly growing business; - Professional development - books, trainings, certifications, etc.; - Team buildings and fun activities; - 25 days paid holiday, 1 day for every 2 years with us; - Fully distributed and remote.

Worldwide

Role Description inventYOU is looking for Cybersecurity Incident Management Experts to support cybersecurity incident response and incident management activities for complex and critical environments. The role focuses on incident analysis, incident coordination, log analysis, forensic and artefact analysis, containment, recovery support and the development of incident response procedures and playbooks. - Support cybersecurity incident analysis, triage and response activities. - Perform log monitoring, log analysis and incident investigation. - Support artefact and forensic evidence analysis. - Contribute to root cause analysis and identification of affected systems. - Support incident coordination, containment, eradication and recovery activities. - Assist in the development or improvement of incident response procedures and playbooks. - Prepare technical reports, findings, recommendations and lessons learned. Qualifications - Bachelor’s degree in Computer Science, Computer Engineering or equivalent. - Intermediate level: at least 3 years of relevant professional experience. - Senior level: at least 6 years of relevant professional experience. - Experience in cybersecurity incident response and incident coordination. - Experience in log monitoring, log analysis and incident investigation. - Experience in artefact and forensic evidence analysis. - Knowledge of incident triage, root cause analysis, containment, eradication and recovery activities. - Familiarity with incident response procedures, reporting and playbooks. - Good understanding of hardware, software and networking technologies. - Experience with different environments such as servers, workstations, cloud, mobile, IoT or OT/ICS will be considered an asset. - Very good command of English: B2 for Intermediate level, C1 for Senior level. Benefits - Join a people-focused technology company with an international mindset. - Work on challenging projects for European clients and organisations. - Be part of a collaborative and supportive team environment. - Gain exposure to cybersecurity, technology and digital transformation projects. - Develop your skills through hands-on experience and continuous learning. - Work with experienced professionals across different business and technology domains.

Greece
emerchantpay logo

IT Governance, Risk, and Compliance Manager

emerchantpay

We’re on a mission to create a global payment ecosystem that connects businesses and consumers everywhere.

Full TimeRemoteTeam 201-500H1B No Sponsor

Role Description We are looking for an IT Governance, Risk, and Compliance Manager to provide oversight of our ICT and information security risk profile, ensuring those risks are identified, managed, and reported within the company's risk appetite, and that governance, risk management, compliance, and resilience are embedded into the way the company operates and grows. The role owns the integrated control framework, multi-standard certifications (ISO 27001, PCI DSS, and SOC), enterprise and third-party risk, business continuity, and key regulatory readiness programs - including the RBI licensing application in India, NIS 2, and the EU AI Act for AI governance and compliance - while acting as a trusted advisor to the Leadership Team. The role sits within the IT function and is part of the Risk Management and Oversight Committee. It works closely with Engineering, IT, Legal, Finance, and the wider business. Responsibilities - Define and maintain the information security strategy, standards, and roadmap, aligned to applicable regulations, rules, and security best practices. - Steer security architecture across a cloud-native environment, defining secure-by-design patterns for microservices, APIs, and shared platform services. - Establish and govern secure software development lifecycle (secure SDLC) practices, embedding automated security controls into CI/CD pipelines. - Define and drive adoption of cloud security guardrails - identity, network segmentation, encryption, secrets management, and configuration baselines. - Build and run security monitoring, logging, and threat detection across cloud, infrastructure, and application layers. - Lead the security incident response lifecycle - preparation, detection, containment, eradication, recovery, and post-incident review - and act as incident commander for security events. - Own vulnerability and threat management: scanning, risk-based prioritization, remediation tracking, and reporting across infrastructure, containers, and application code. - Plan and coordinate penetration testing and offensive-security exercises (in-house or co-sourced) and drive findings to closure. - Govern identity and access management, privileged access, and least-privilege principles across cloud and corporate systems. - Define and oversee data protection controls - encryption, key management, data classification, and loss prevention - for sensitive and cardholder data. - Secure corporate IT and office infrastructure, including endpoints, networks, and productivity and collaboration platforms. - Partner with Engineering and DevOps teams to make the secure path the easy path, providing tooling, standards, threat modelling, and design reviews. - Provide security input into architecture and change decisions, including the adoption of new technologies and third-party services. - Run security awareness and phishing-resilience programs for technical and non-technical staff. - Implement and evidence the technical security controls underpinning PCI DSS, ISO 27001, and SOC audits. - Monitor the evolving threat landscape and emerging security technologies. - Act as a key member of the internal security center of excellence and contribute to cross-functional security working groups. - Build, lead, and mentor a small security team. - Report security posture, key risks, and metrics. Qualifications - Bachelor’s or master’s degree in computer science, information security, or a related field, or equivalent practical experience. - At least 10 years in information / cyber security, including a minimum of 2-3 years in a leadership role, with hands-on experience securing cloud-native environments at scale. - Deep, practical public-cloud security knowledge (AWS strongly preferred): identity, networking, encryption, logging, and configuration management. - Strong experience securing DevOps / CI/CD pipelines and modern microservices architectures - containers, APIs, and infrastructure-as-code. - Working knowledge of application security and secure SDLC across modern programming languages and web frameworks. - Hands-on experience with security operations, incident response, and vulnerability management. - Solid understanding of security frameworks and compliance standards relevant to payments: ISO 27001, PCI DSS, SOC 2, and NIST CSF. - Working AI security literacy, with hands-on use of AI-assisted security tooling (e.g., GenAI coding assistants, AI-augmented SAST/DAST and SIEM/SOC analytics) and a practical understanding of securing AI/LLM and agentic applications, including AWS AI services such as Amazon Bedrock and the OWASP Top 10 risks for LLMs (e.g., prompt injection and data leakage). - Strong analytical and problem-solving ability, with high integrity and sound judgement. - Excellent verbal and written communication skills, fluent English, and the ability to influence engineers with data, logic, and best practices. Considered as an Advantage - Professional certification such as CISSP, CCSP, OSCP, AWS Security Specialty, or CISM. - Experience in a payments, fintech, banking, or other regulated environment. - Familiarity with operational-resilience expectations (e.g. DORA-style requirements). - Experience standing up a security function. Benefits - Fast-growing payment company; - Excellent working conditions, casual atmosphere, and state-of-the-art hardware; - Modern, challenging, constantly growing business; - Professional development - books, trainings, certifications, etc.; - Team buildings and fun activities; - 25 days paid holiday, 1 day for every 2 years with us; - Fully distributed and remote.

Worldwide