Partner with engineering, platform, and product teams to embed security into day-to-day delivery and SDLC workflows
Support application security programs across SAST, DAST (web and API), SCA, and secrets scanning
Strengthen software supply chain security and integrate security controls into the Harness unified pipeline and related CI/CD workflows
Build AI-powered workflows including agentic IDE and MCP server integrations to automate triage, prioritize and enable auto remediation via standardized playbooks
Reduce false positives and operational noise by using AI-assisted analysis to tune and maintain SAST queries/rules
Support response to zero-day events by accelerating assessment/scanning and automating identification of affected assets (e.g., vulnerable libraries or malicious packages) using inventory sources
Create and maintain runbooks, playbooks, and documentation for recurring findings, remediation steps, and operational processes
Support the security exemption/exception process, including documentation, approvals, and expiry/renewal tracking

Bachelor’s degree in Computer Science/ Cybersecurity/ Engineering (or equivalent experience)
Strong knowledge of web/app security fundamentals (e.g., OWASP Top 10 concepts)
Familiarity with Git and modern development workflows (PRs, CI/CD)
Strong proficiency in at least one programming language (Python, JavaScript/TypeScript, etc.)
Experience with writing unit tests, producing user documentation, and informative demos
Hands-on experience with AWS/Azure, including security fundamentals (e.g., IAM, networking, logging/monitoring)
Experience using agentic AI systems in engineering/security workflows
Ability to operate effectively in a high-performing, collaborative environment

AI Security Automation Engineer

Key skills