Senior Product Security Engineer (AI/ML)

Greenhouse is looking for a Senior Product Security Engineer (AI/ML) to join our team!

Security at Greenhouse is foundational to our success and is critical for building & maintaining our user and customer trust. From influencing how we write our software, deploy our infrastructure, and make architectural decisions, Security is a major focus here at Greenhouse. We are excited to make our program more robust with the addition of a Product Security Engineer with AI security expertise.

You will serve as the team’s Subject Matter Expert (SME) on AI security focussed engagements while contributing to our broader security engineering goals. You will act as a partner with our engineers to improve security best practices across our agile SDLC, specifically focusing on securing our emerging AI and Machine Learning features.

Who will love this job

• An Entrepreneurial Problem-Solver - You don’t wait for a ticket to fix a gap. You proactively stay current on AI/ML trends and identify ways to harden our systems before risks manifest
• A Pragmatic Partner - You understand the "need for business speed." You thrive in environments where security enables innovation rather than hindering it, finding creative ways to support development velocity
• An Independent Driver - You demonstrate a high bias for action. You are comfortable completing tasks independently and asynchronously
• A Generous Collaborator - You listen well and work effectively with diverse audiences, from legal counsel during AI Ethics committee reviews to infrastructure engineers feature development, incorporating feedback to build better solutions
• A Clear Communicator - You can translate a complex technical concept into a real-world business impact, whether through technical writing, documentation, or internal presentations

What you’ll do

• Act as the primary advisor for securing AI/ML workflows, conducting threat modeling for AI product features, and defining guardrails for Large Language Model (LLM) usage
• Advise and review on agentic AI usage across the R&D department
• Perform security testing and source code review of application and underlying platform for both AI and non-AI systems
• Help upskill the wider security and engineering teams on AI security fundamentals and common threats/vulnerabilities
• Partner with our compliance and legal teams on AI governance decisions and processes
• Act as a security partner, building and maintaining relationships with product and engineering teams to integrate security into the development process
• Embed security principles and controls to achieve a ‘secure by default’ posture
• Secure modern technology stacks that include Kubernetes, Docker, AWS, and CI/CD tooling
• Participate in the security engineering on-call rotation to triage and respond to urgent security alerts and incidents outside of standard business hours when necessary

You should have

• Practical experience securing model training and inference pipelines (specifically ARC and MLFlow) and securing AI Gateways
• Professional experience as a developer releasing production code. You are proficient with modern workflows like Agile, GitOps, and CI/CD
• Hands-on experience using modern AI development tools (e.g., Cursor, GitHub Copilot, Gemini, or Claude) and interacting with OpenAI/Gemini APIs
• A strong foundation in AWS core services, Kubernetes (K8s), Linux systems, and networking principles
• Expert-level knowledge of web and AI/ML application security topics  (e.g. OWASP Web / LLM / Agent)
• Exposure to AI compliance frameworks (e.g. ISO42001)
• Experience with architecture reviews, auth protocols flows related to SAML, OAuth2, and OIDC
• Deep understanding of the AI ecosystem including design principles, threat models, and appropriate tools
• The ability to perform both structured and ad-hoc threat models, providing practical, code-level recommendations that balance security with development speed
• Experience working with Ruby on Rails, a plus
• Your own unique talents! Your background has given you a unique perspective and set of transferable skills that aren't always in alignment with a given role - but those are qualities we value at Greenhouse. If you don't meet 100% of the qualifications outlined above, we still strongly encourage you to apply

Applicants must be currently authorized to work in the United States on a full-time basis.

If you are based in California, we encourage you to read this important information for California residents linked here.

The national pay range for this role is $168,100 - $210,150. Individual compensation will be commensurate with the candidate's experience and qualifications. Certain roles may be eligible for additional compensation, including stock option awards, bonuses, and merit increases. Additionally, certain roles have the opportunity to receive sales commissions that are based on the terms of the sales commission plan applicable to the role.

Greenhouse provides a variety of benefits to employees, including medical, dental, and vision insurance, basic life insurance, mental health resources, financial wellness benefits, and a fully paid parental leave program. For US-based employees, we offer short-term and long-term disability coverage, a 401(k) plan and company match. U.S. based employees also receive, per calendar year, up to 14 scheduled paid holidays and up to 80 hours of paid sick leave. Non-exempt employees accrue up to 20-25 days of paid vacation time annually, depending on tenure, and exempt employees have flexible paid time off (PTO).

The anticipated closing date for this role is February 2nd, 2026.

LI-MM1