Lead Security Engineer GenAI Platform

We are seeking a highly skilled to join our customer's team.

This role involves leading security design and implementation for advanced AI agents, full-stack applications, and platforms, ensuring robust protection and compliance with industry standards. The person in this role will drive security initiatives for flagship AI products and foster a security-focused engineering culture.

Duties

• Design and implement comprehensive security measures for AI agents, full-stack applications, and platforms.
• Develop and maintain DevSecOps pipelines incorporating SAST, SCA, DAST, and secret scanning tools.
• Conduct threat modeling exercises and enforce least-privilege access principles.
• Lead security initiatives for flagship AI products, including UpToDate Expert AI.
• Ensure compliance with relevant security standards and regulations such as SOC 2, HIPAA, and ISO 27001.
• Mentor engineering teams and promote a security-first mindset across the organisation.
• Continuously enhance security tooling, processes, and best practices.

Requirements

• Minimum of 8 years' experience in cloud security engineering, preferably with AWS and/or Azure platforms.
• Expert proficiency in Python and Bash scripting for security automation.
• Extensive experience integrating security within CI/CD pipelines.
• Strong background in threat modeling and security architecture design.
• Proven experience securing containerized environments such as Docker and Kubernetes.
• Understanding of security challenges specific to AI and machine learning systems.
• Capability to successfully complete a live coding technical interview.
• AWS Professional Certificate or equivalent.

Preferred qualifications:

• Experience working with large-scale distributed systems.
• Familiarity with healthcare data security regulations.
• Knowledge of security considerations for large language models (LLMs).

Offer

• Remote or hybrid (we have modern office space in Warsaw or Gdansk) model.
• Flexible forms of collaboration: employment contract or B2B contracting.
• Additionally paid break in the provision of services: 26 days
• Flexible working hours and possibility to agree on task-based working time.
• Global projects in NDL product company.
• An opportunity to grow within our structures both locally and internationally.
• A modern technology stack.
• A safe environment for brainstorming, experimenting and influencing the project outcomes.
• Contests: Global Innovation Awards, Global Code Games, Legal Hackathon.
• A long-term contract in a well-established, reputable and prosperous company.
• Access to webinars, conferences, learning platforms, and mentoring program.
• Private healthcare program, and sports and cultural cards.
• Integration events, fairs, sports clubs.