Conduct advanced offensive security testing across AI/ML systems, LLM integrations, GenAI platforms, and associated infrastructure
Design and execute comprehensive penetration tests targeting AI/ML models, LLM applications, model pipelines, retrieval systems, data agents, and AI-enabled business workflows
Identify vulnerabilities such as jailbreaking, prompt injection, model extraction, adversarial ML attacks, data poisoning, RAG bypasses, and safety guardrail circumvention
Evaluate and develop tooling (including internal utilities and open‑source frameworks) to automate and scale AI/LLM security testing
Analyze training data governance, guardrail design, inference endpoints, system prompts, agent autonomy, model monitoring, and model‑ops pipelines
Perform security and safety risk analyses on new and existing AI/ML deployments, including cloud‑based services, APIs, model marketplaces, and third‑party LLM integrations
Assess AI supply chain risks, dependency integrity, and alignment with enterprise standards and regulatory obligations
Deliver clear, actionable findings to both technical and non‑technical stakeholders
Produce detailed reporting including: Executive summaries, Technical proof‑of‑concepts, Prioritized remediation recommendations
Collaborate with Engineering, Data Science, Cloud, Cyber Defense, Architecture, and Risk to remediate findings and improve AI security posture
Contribute to organization-wide AI security standards, policies, control objectives, and hardening practices
Ensure AI penetration testing aligns with regulatory, privacy, model safety, and internal policy requirements
Participate in AI/ML–related security incident investigations, providing subject-matter expertise on root cause analysis and exploitation methods.

Requirements

Bachelor's degree preferred
Information security certification / accreditation an asset
7+ years of relevant experience
Expert knowledge of IT security and risk disciplines and practices
5+ years in application security or penetration testing, with hands-on experience in AI/ML environments preferred
7+ years of experience using penetration testing tools (Metasploit, Burp Suite, Nmap, Kali, etc.)
Strong knowledge of AI/LLM vulnerabilities including OWASP Top 10 for LLMs, adversarial attacks, prompt injection, and model safety testing frameworks
Familiarity with scripting and automation (Python preferred), model interrogation techniques, and cloud-native AI services (Azure, AWS, GCP)
Experience penetration testing AI/LLM platforms, cloud workloads, and PCI-scoped environments
Knowledge of security frameworks (NIST AI RMF, OWASP LLM/ML, ISO 42001, MITRE ATLAS)
Relevant certifications: OSCP, CEH, GPEN, CISSP, or AI/ML security certifications
Experience supporting audits, compliance reviews, and incident response activities.

Benefits

📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

penetration testingAI/ML security testingvulnerability assessmentrisk analysismodel safety testingscriptingautomationcloud securityincident responseapplication security

Soft Skills

communicationcollaborationanalytical thinkingproblem-solvingreportingstakeholder engagementtechnical writingteamworkleadershipadaptability

Certifications

OSCPCEHGPENCISSPAI/ML security certificationsInformation security certificationISO 42001NIST AI RMFOWASP LLM/MLMITRE ATLAS