Senior Product Security Engineer (AI/ML)

Location: British Columbia Apply Our mission at Greenhouse is to make every company great at hiring 60 so we go to great lengths to hire great people because we believe that they9re the foundation of our success. At Greenhouse, you9ll join a team that collaborates purposefully, fosters inclusivity, and communicates with transparency and accountability so we can help companies measurably improve the way they hire. Join us to do the best work of your career, solving meaningful problems with remarkable teams. Greenhouse is looking for a Senior Product Security Engineer (AI/ML) to join our team! Security at Greenhouse is foundational to our success and is critical for building & maintaining our user and customer trust. From influencing how we write our software, deploy our infrastructure, and make architectural decisions, Security is a major focus here at Greenhouse. We are excited to make our program more robust with the addition of a Product Security Engineer with AI security expertise. You will serve as the team9s Subject Matter Expert (SME) on AI security focussed engagements while contributing to our broader security engineering goals. You will act as a partner with our engineers to improve security best practices across our agile SDLC, specifically focusing on securing our emerging AI and Machine Learning features.

Who will love this job

• An Entrepreneurial Problem-Solver - You don9t wait for a ticket to fix a gap. You proactively stay current on AI/ML trends and identify ways to harden our systems before risks manifest
• A Pragmatic Partner - You understand the "need for business speed." You thrive in environments where security enables innovation rather than hindering it, finding creative ways to support development velocity
• An Independent Driver - You demonstrate a high bias for action. You are comfortable completing tasks independently and asynchronously
• A Generous Collaborator - You listen well and work effectively with diverse audiences, from legal counsel during AI Ethics committee reviews to infrastructure engineers feature development, incorporating feedback to build better solutions
• A Clear Communicator - You can translate a complex technical concept into a real-world business impact, whether through technical writing, documentation, or internal presentations

What you9ll do

• Act as the primary advisor for securing AI/ML workflows, conducting threat modeling for AI product features, and defining guardrails for Large Language Model (LLM) usage
• Advise and review on agentic AI usage across the R&D department
• Perform security testing and source code review of application and underlying platform for both AI and non-AI systems
• Help upskill the wider security and engineering teams on AI security fundamentals and common threats/vulnerabilities
• Partner with our compliance and legal teams on AI governance decisions and processes
• Act as a security partner, building and maintaining relationships with product and engineering teams to integrate security into the development process
• Embed security principles and controls to achieve a secure by default posture
• Secure modern technology stacks that include Kubernetes, Docker, AWS, and CI/CD tooling
• Participate in the security engineering on-call rotation to triage and respond to urgent security alerts and incidents outside of standard business hours when necessary

You should have

• Practical experience securing model training and inference pipelines (specifically ARC and MLFlow) and securing AI Gateways
• Professional experience as a developer releasing production code. You are proficient with modern workflows like Agile, GitOps, and CI/CD
• Hands-on experience using modern AI development tools (e.g., Cursor, GitHub Copilot, Gemini, or Claude) and interacting with OpenAI/Gemini APIs
• A strong foundation in AWS core services, Kubernetes (K8s), Linux systems, and networking principles
• Expert-level knowledge of web and AI/ML application security topics 0e.g. OWASP Web / LLM / Agent)
• Exposure to AI compliance frameworks (e.g. ISO42001)
• Experience with architecture reviews, auth protocols flows related to SAML, OAuth2, and OIDC
• Deep understanding of the AI ecosystem including design principles, threat models, and appropriate tools
• The ability to perform both structured and ad-hoc threat models, providing practical, code-level recommendations that balance security with development speed
• Experience working with Ruby on Rails, a plus
• Your own unique talents! Your background has given you a unique perspective ... If you don't meet 100% of qualifications outlined above we still strongly encourage you to apply.

Applicants must be legally eligible to work in Canada as of start date chosen by Company. We are unable to support sponsorship at this time. For purposes of processing or administering your employment relationship personal information may be transferred/accessed by affiliates in US or elsewhere. The national pay range for this role is $155600 - $233400 CAD. Individual compensation commensurate with candidate's experience & qualifications. Certain roles may be eligible for additional compensation including stock option awards bonuses merit increases. Certain roles have opportunity for sales commissions based on sales commission plan applicable. Anticipated closing date: February 2nd 2026. #LI-MM1

Who we are

At Greenhouse we live by our mission through using our own product... We are remote-first company... We nurture leaders who create inclusive culture... Recognized as Fortune's Best Places To Work & Inc's Best Workplaces multiple years. 6 7Greenhouse Software is equal opportunity employer... If you need assistance or reasonable accommodation during application process reach out accommodations@greenhouse.io. Emails about job opportunities only offered by employees @greenhouse.io email addresses. See website if suspect phishing scam.