GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.
General Description
GuidePoint Security is seeking a skilled AI Security Engineer to join our growing AI Security Services team. You will be assisting customers in the design, implementation, security, and operational management of generative AI security solutions. You will work closely with peers across multiple domains including AppSec, Cloud Security, and Vulnerability Management to deliver holistic and secure solutions adhering to industry best practices. This role offers the exciting opportunity to contribute to our growing AI security practice.
Roles and Responsibilities
- AI Security Architecture & Assessment: Advise on and assess the security posture of AI/ML systems, including LLMs, GenAI pipelines, and model serving infrastructure — identifying vulnerabilities, attack surfaces, and gaps against industry frameworks (e.g., OWASP LLM Top 10, MITRE ATLAS).
- Threat Modeling for AI Systems: Lead threat modeling exercises specific to AI workloads, covering adversarial inputs, prompt injection, model inversion, data poisoning, and supply chain risks across SaaS, self-hosted, and local AI deployments.
- Secure AI Integration Guidance: Advise internal teams on securely integrating SaaS AI services and APIs (e.g., OpenAI, Azure OpenAI, Bedrock) into enterprise applications, including safe handling of credentials, outputs, and user data.
- Data Security & Privacy Controls: Evaluate and recommend controls for data ingestion pipelines, RAG architectures, and vector databases to prevent unauthorized data exposure, leakage through model outputs, or non-compliant data processing.
- Collaboration & Stakeholder Engagement: Serve as a trusted security advisor bridging business stakeholders, AI/ML engineers, IT operations, and information security teams on all matters related to AI risk and security.
- Stay Current on AI Threat Landscape: Continuously track emerging AI security research, adversarial techniques, regulatory developments, and vendor security advisories to keep client guidance relevant and proactive.
- Security Documentation & Standards: Produce and maintain security architecture documentation, risk assessments, control frameworks, and guidelines tailored to the organization's AI environment.
- Strategic AI Security Roadmap: Contribute to the development of a long-term AI security strategy, including prioritized remediation roadmaps, capability maturity assessments, and investment recommendatio