What You'll DoAs an AI Security Engineer (I4), you will play a critical role in safeguarding the organization's AI and machine learning systems, ensuring they are robust against emerging security threats and aligned with privacy and ethical standards. You will collaborate with engineering, data science, and security teams to design, assess, and improve the security posture of AI systems and the infrastructure that supports them.This is a hands-on technical role suited for an experienced engineer with a deep understanding of security principles and practical knowledge of AI/ML systems.mentation while ensuring secure architectural designs that align with organizational goals and compliance requirements.You will report to Director of security team. This is a remote role.
Role Responsibilities
What Your Responsibilities Will BeSecurity Design & Architecture
- Partner with AI/ML teams to design secure AI pipelines, from data ingestion to model deployment.
- Define and enforce security best practices for training, validation, and inference environments.
- Evaluate threats unique to AI systems such as adversarial ML, data poisoning, model inversion, and prompt injection.
Threat Modeling & Risk Assessment
- Conduct threat modeling of AI/ML systems and LLM-based applications.
- Identify attack surfaces in foundation models, vector databases, APIs, and model-serving environments.
- Develop and maintain risk mitigation strategies specific to AI systems.
Security Reviews & Testing
- Perform security reviews and penetration testing of ML pipelines and GenAI applications.
- Support secure integration of LLMs (e.g., OpenAI, Claude, proprietary models) with internal applications.
- Build or use tools to scan for vulnerabilities in ML libraries and frameworks (e.g., TensorFlow, PyTorch).
Detection & Response
- Collaborate with SOC and SIRT teams to develop detection logic for AI-related threats.
- Investigate incidents involving AI misuse, hallucinations, or exploitation.
- Support red-teaming and tabletop exercises focused on AI risks.
Governance & Compliance
- Assist in establishing policies for secure AI development and deployment.
- Ensure compliance with AI governance frameworks, data privacy regulations (e.g., GDPR, CPRA), and company standards.
- Advocate for responsible and explainable AI practices.
Tooling & Automation
- Build or integrate tools for prompt security validation, model behavior analysis, and abuse detection.
- Automate threat intelligence gathering related to AI attack vectors.
What You’ll Need To Be Successful
Minimum Qualifications
- Bachelor's or master’s degree in computer science, Information Security, AI/ML, or a related field.
- 5+ years of experience in cybersecurity or security engineering, including at least 1–2 years working with AI/ML systems.
- Strong understanding of machine learning pipelines, model lifecycle, and AI-specific vulnerabilities.
- Proficiency in Python and familiarity with ML frameworks (e.g., PyTorch, TensorFlow, scikit-learn).
- Experience with cloud security (AWS, GCP, or Azure), particularly in AI/ML contexts.
- Familiarity with LLMs, vector stores, RAG architecture, and prompt engineering security considerations.
Preferred Qualifications
- Experience in adversarial ML, red teaming of LLMs, or security research in GenAI contexts.
- Knowledge of AI governance tools and model card documentation.
- Contributions to AI security tooling or participation in AI safety communities.
- Certifications such as OSCP, GIAC GCPN, GSEC, or AI-related credentials.
How We’ll Take Care Of YouTotal RewardsIn addition to a great compensation package, paid time off, and paid parental leave, many Avalara employees are eligible for bonuses.Health & WellnessBenefits vary by location but generally include private medical, life, and disability insurance.Inclusive culture and diversityAvalara strongly supports diversity, equity, and inclusion, and is committed to integrating them into our business practices and our organizational culture. We also have a total of 8 employee-run resource groups, each with senior leadership and exec sponsorship.Learn more about our benefits by region here: Avalara North America
What You Need To Know About Avalara
We’re defining the relationship between tax and tech.We’ve already built an industry-leading cloud compliance platform, processing over 54 billion customer API calls and over 6.6 million tax returns a year. Our growth is real - we're a billion dollar business - and we’re not slowing down until we’ve achieved our mission - to be part of every transaction in the world.We’re bright, innovative, and disruptive, like the orange we love to wear. It captures our quirky spirit and optimistic mindset. It shows off the culture we’ve designed, that empowers our people to win. We’ve been different from day one. Join us, and your career will be too.
We’re An Equal Opportunity Employer
Supporting diversity and inclusion is a cornerstone of our company — we don’t want people to fit into our culture, but to enrich it. All qualified candidates will receive consideration for employment without regard to race, color, creed, religion, age, gender, national orientation, disability, sexual orientation, US Veteran status, or any other factor protected by law. If you require any reasonable adjustments during the recruitment process, please let us know.
