Lead by performing in-depth and high-quality security assessments of emerging technology (AI tooling, agentic platforms, etc.) including architecture and design reviews, code reviews, and penetration tests.
Provide guidance to team members and prospective suppliers on Salesforce security requirements including remediation advice and potential feature enhancements.
Threat model common attacker methods to develop appropriate mitigation techniques, providing guidance that balances security requirements with functional requirements.
Develop automated processes and support improvement of tooling to identify and solve problems at scale.
Collaborate with engineering teams and business partners to drive solutions through a secure development lifecycle.
Define and develop technical security standards and guidelines with business partners.
Research new technologies, emerging threats, and vulnerabilities for strategic planning and process improvements.
Use your writing and presentation skills to communicate at all levels in the organizations.
Possess the ability to communicate concisely, clearly, and intelligently to partners from a variety of backgrounds, including those who are non-technical.

8+ years of experience in a security role
Experience with large language models (LLMs) and agentic systems — building, evaluating, or securing them
Familiarity with AI security attack surfaces including prompt injection, data exfiltration, privilege escalation in agents, and model supply chain risks
A related technical degree required
Understanding of RAG architectures, classifier models, and how retrieval and generation pipelines work
Familiarity with security frameworks and certifications such as ISO 27001, SOC 2, PCI DSS, OWASP Top 10, CWE Top 25, and MITRE ATT&CK
Relevant BA/BS degree and/or certifications such as CRISC, CISSP, CCIE, CISM, CISA, or CCSK
Experience defining and communicating security remediation tasks to project and data owners

Senior Product Security Engineer – Enterprise Security, Security AI

Key skills