Post Job Free
Sign in

Lead Security Engineer - Artificial Intelligence

Company:
Wellmark
Location:
Des Moines, IA, 50319
Posted:
July 14, 2026
Apply

Description:

Lead Security Engineer - Artificial Intelligence

We are seeking a Lead Security Engineer with deep experience securing enterprise systems, cloud platforms, and agent-based AI development environments at scale. This role is hands-on and execution-focused, responsible for defining guardrails around AI workloads across the full lifecycle—development, deployment, training, and inference.

The ideal candidate combines production grade AI engineering with advanced expertise in cloud security, DevSecOps, identity, and governance, enabling organizations to adopt GenAI, Microsoft Agents, and AI-assisted code generation platforms safely and at scale.

This role aligns closely to modern Engineer expectations, with a specialization in AI platform security, and risk-aware AI delivery.

What you will do:

Secure corporate AI capabilities used in enterprise applications

Establish Best Practices for model implementation, versioning, monitoring and governance for AI Systems on the Enterprise.

Design/Implement guardrails for AI code-generation tools used in developer workflows

Enable and implement safe AI-assisted development across IDEs, CI/CD pipelines, and local developer environments

Support model selection and integrations within the organization (Claude class, GPT-class, and similar platforms)

Engineer and secure Microsoft Agents, Copilot-style workflows, and agent-driven automation.

Prevent insecure code generation, prompt leakage, and unsafe agent behavior while preserving developer velocity

Preferred:

Experience with creating/managing AI Agent IDs and MCP servers and integrations

Strong proficiency in Python for AI workflows, automation, and orchestration

Experience with RAG pipelines, embeddings, APIs, and AI service integration

Understanding of AI lifecycle risks

Strong experience securing AI workloads on AWS & Azure

Experience with Cloud Hardening Best Practices.

Strong Infrastructure-as-Code (IaC) for Cloud, preferably Terraform

Strong background in application security, cloud security, and IAM

Experience embedding security into CI/CD, IaC, and SDLC workflows

Automation experience using Python, PowerShell, Bash, and APIs

Strong RHEL Linux skills, especially at the command line level.

Strong understanding of AI/LLM-specific threats such as prompt injection, data poisoning, model theft, adversarial attacks, sensitive data leakage, etc.

Experience implementing AI security controls such as guardrails, content filtering, input/output validation, RBAC for AI systems, secure prompt handling, and AI audit logging

Understanding of secure AI architecture and AI governance frameworks

Familiarity with:

OWASP Top 10 for LLM Applications

NIST AI Risk Management Framework

Responsible AI and AI compliance practices

SIEM, threat detection, and vulnerability management. Previous experience with integrating AI with SIEM systems

Required:

Bachelor's degree or direct and applicable work experience.

7+ years of experience working in architecting of server or network controls in any of the following: DevOps, DevSecOps, Identity and Access Management (IAM), system virtualization, Windows and Linux Security, Cloud Security, Network and Network Security, Active Directory, Java, XML, JSON, Azure, AWS, MySQL, Federation, SSO.

Knowledge of compliance and regulatory program requirements, such as HIPAA, ISO 27000, NIST, FISMA, and SOC standards.

Experience architecting and designing security solutions at the enterprise level. Strong knowledge of high-scale cloud systems within multiple accounts and how they can be secured using agreed best practices.

Experience with DevSecOps and automation in highly scalable environments.

Strong analytical and problem-solving skills. A certain degree of creativity, innovation and latitude is required (the ability to think outside the box when faced with challenges).

High attention to detail while completing tasks and processes. Ability to prioritize to maximize personal efficiency.

Ability to help design solutions for cybersecurity problems.

Strong compliance and regulatory-focused customer service orientation with effective verbal and written communication skills working with technical and non-technical personnel, with the ability to address all levels of leadership, business, technical, and non-technical staff.

Travel required up to 5%

Apply