Key skills
AIMLLLMAzureTerraformKubernetesIAMAzure ADEntra IDSDLCCI/CDCloud Security
About this role
CIVIE is a company focused on addressing significant challenges in radiology through innovative technologies. The AI Security Engineer will be responsible for securing a modern platform that integrates cloud infrastructure and AI systems, implementing security architecture, and managing identity and access controls.
Responsibilities:
- Implement security architecture across Azure (networking, identity, compute, storage)
- Support developers in securing AI/LLM systems, including model access, prompt handling, data leakage prevention, and abuse mitigation
- Maintain detection and response capabilities (SIEM, EDR, SOAR)
- Lead threat modeling and risk assessments for new features, especially AI agents and APIs
- Implement and enforce security controls for regulated environments
- Manage identity and access controls (Azure AD / Entra ID, RBAC, least privilege)
- Investigate and respond to security incidents
- Partner with engineering to embed security into CI/CD pipelines and SDLC
- Conduct security reviews of infrastructure-as-code, APIs, and application architecture
- Drive compliance efforts (HIPAA, SOC 2, HITRUST, NIST and related frameworks)
- Evaluate and integrate security tools across cloud, endpoint, and application layers
- Work with technical teams on implementing patches and vulnerabilities management
Requirements:
- Minimum of 4 years' experience in security engineering and cloud security
- Strong hands-on experience with Microsoft Azure security services (Defender for Cloud, Sentinel, etc.)
- Experience securing AI/ML systems or strong familiarity with AI/LLM security risks (prompt injection, data exfiltration, model abuse)
- Deep understanding of identity and access management (IAM), networking, and secure architecture
- Experience with SIEM/SOAR tools, EDR technologies and Vulnerability management
- Experience working in HIPAA-regulated environments
- Experience with infrastructure as code (Terraform, ARM, or similar)
- Experience securing LLM-based products or agent frameworks
- Familiarity with securing AI systems or adversarial testing
- Knowledge of data security (DLP, encryption, tokenization)
- Experience with container and Kubernetes security
- Certifications such as CISSP, CCSP, Azure Security Engineer Associate, or similar
- Experience in high-growth startups or fast-paced environments