AI Security Engineer - Hybrid (Atlanta, GA) at OneDigital

**Who this is for** An experienced security professional looking to lead the secure adoption of AI within a dynamic enterprise environment, focusing on protecti

Work type: hybrid

Location: Atlanta, GA

Type: Full-time

Summary

**Who this is for** An experienced security professional looking to lead the secure adoption of AI within a dynamic enterprise environment, focusing on protecting complex ML pipelines and application infrastructures. **Key highlights** This hybrid role combines hands-on application security testing (SAST/DAST) with high-level AI risk management, including mitigation of threats like prompt injection and data poisoning within a Zero Trust framework. **You might be a good fit if you...** - Have hands-on experience operating enterprise tools like Snyk, Qualys, Salt, and CrowdStrike AIDR. - Possess a deep understanding of Zero Trust architecture and identity-first security principles. - Can translate complex technical security concepts for both engineering teams and executive leadership. - Hold a degree in Computer Science or Information Security with specialized experience in securing AI/ML models.

Job Description

No other company in our industry is supercharging the way they work and serve their clients like OneDigital. Fresh thinking has always been the core of OneDigital’s vision and growth strategy. It’s how we stand out in our industry, it’s how we stay competitive and resilient in a changing world. Most importantly, our innovative approach is helping more people do their best work and live their best lives. Innovation fuels our employee experience by making it easier to do your best work anytime, anywhere and from any device. And our tech-based products for clients are a game changer in our industry. If you thrive on change and innovation, OneDigital is the career choice for you.

Our Newest Opportunity:

We are seeking a highly skilled AI Security Engineer to lead the secure adoption of artificial intelligence and manage our broader application security program across the enterprise. In this role, you will ensure that all AI initiatives strictly align with our Zero Trust architecture while also leading our SAST, DAST, SCA, and API security testing efforts. 

Essential Duties and Responsibilities: 

• Design and enforce security guardrails for AI applications, ensuring all systems integrate seamlessly with our identity management frameworks, including Microsoft Entra ID and Phishing-Resistant Multi-Factor Authentication (PRMFA). 

• Lead comprehensive application security testing across the enterprise. Utilize Snyk for Static Application Security Testing (SAST) and Software Composition Analysis (SCA), and conduct Dynamic Application Security Testing (DAST) to identify and remediate vulnerabilities early in the software development lifecycle. 

• Leverage Salt to secure enterprise APIs and data pipelines, ensuring robust discovery, posture management, and threat protection for the systems feeding our AI models and core applications. 

• Utilize Qualys for continuous vulnerability scanning of the infrastructure hosting our AI tools and broader application environments. 

• Conduct rigorous threat modeling for AI and machine learning pipelines. Identify and mitigate risks specific to AI, such as prompt injection and data poisoning, guided by industry frameworks. 

• Monitor and respond to AI-specific threats using CrowdStrike AIDR. Develop playbooks and participate in tabletop exercises designed around AI-driven incidents to improve organizational resilience. 

• Collaborate with security awareness teams to evaluate how employees interact with AI. Develop strategies to mitigate risks related to over-reliance on AI outputs and AI-generated phishing attacks. 

• Evaluate the security posture of third-party AI applications and SaaS platforms. Ensure external tools meet our stringent compliance requirements, including SOC 2 Type 2 standards.  

Qualifications, Skills and Requirements: 

• Hands-on proficiency managing and operating enterprise security tools, specifically Qualys, Salt, CrowdStrike AIDR, and Snyk. 

• Demonstrated experience conducting SAST, DAST, SCA, and securing complex APIs. 

• Deep understanding of identity-first security principles, Zero Trust architecture, and enterprise SSO environments. 

• Strong familiarity with aligning security practices to the CIS Top 18 Controls. 

• Excellent communication skills with the ability to translate complex security concepts for both technical teams and executive leadership. 

• Background in researching or mitigating human factors in cybersecurity is a plus. 

• Active participation in the broader security community, such as ISACA, ISC2, or mentorship programs is preferred. 

Education, Training and Experience: 

• Bachelor of Science or advanced degree in Computer Science, Information Security, or a related field. 

• Proven experience in application security, with a specialized focus on securing artificial intelligence, machine learning, or large language models.  

Your base pay is dependent upon your skills, education, qualifications, professional experience, and location. In addition to base pay, some roles are eligible for variable compensation, commission, and/or annual bonus based on your individual performance and/or the company’s performance.  We also offer eligible employees health, wellbeing, retirement, and other financial benefits, paid time off, overtime pay for non-exempt employees, and robust learning and development programs. You will receive reimbursement of job-related expenses per the company policy and may receive employee perks and discounts. 

To learn more, visit: [www.onedigital.com/careers](http://www.onedigital.com/careers)

View this job on nocollar jobs