Senior AI Security Engineer

Senior AI Security Enginee

At Menlo Security, our mission is unequivocal: to enable the world to connect, communicate, and collaborate securely without compromise. In an era profoundly shaped by rapid technological shifts and global challenges, this mission has never been more vital. We safeguard some of the world's most critical enterprises, including Fortune 500 companies, 9 out of 10 of the largest global banks, and the Department of Defense.

We are entering an exciting phase of accelerated growth, expanding beyond 400 employees and charting new territory. This journey demands passionate, ethical, and agile talent — individuals who are hyper-organized, fanatical about seeing projects through, deeply service-oriented, and confident enough to lead while remaining humble enough to learn. Menlo is exceptionally well-funded by an unparalleled group of investors, including Vista Equity Partners, General Catalyst, JPMC, American Express, HSBC, and Ericsson Ventures.

The Opportunity: Secure the Future of AI

The emergence of autonomous AI agents presents a frontier of both incredible potential and unprecedented security challenges. We are seeking a visionary **Senior AI Security Engineer** to join our team and become a foundational part of securing this evolving landscape.

In this pivotal role, you will be at the forefront of **researching, designing, and implementing novel techniques** to detect and mitigate a new generation of threats. Your focus will be on safeguarding agentic AI systems against prompt poisoning, context manipulation, malicious agent behaviors, and other sophisticated adversarial tactics. You will collaborate closely with our engineering teams, transforming cutting-edge security research into practical, deployable security controls that protect agents operating in real-world environments, especially when interacting with untrusted web content.

This is your chance to define the future of AI security, building the safeguards that will enable autonomous agents to operate safely and effectively.

What You'll Do: Core Responsibilities

• **Pioneer Threat Research:** Investigate new and emerging attack vectors against AI agents, including sophisticated prompt injection, context poisoning, adversarial content embedding, and the misuse of agent planning and reasoning mechanisms.
• **Architect Scalable Agentic Workflows:** Design and implement robust, high-performance pipelines that ensure secure agent-to-web interactions at scale.
• **Innovate Detection & Mitigation Techniques:** Develop and prototype novel approaches for identifying malicious prompts, unsafe contextual signals, and adversarial behaviors within LLM-powered agents.
• **Deploy Agent Security Controls:** Implement these advanced techniques as critical security controls within agentic runtimes, empowering agents to safely reason over and act on external data sources.
• **Collaborate & Integrate:** Partner closely with applied engineers to seamlessly integrate research-driven security mechanisms into production systems, balancing security effectiveness with optimal agent performance.
• **Proactive Threat Intelligence:** Continuously evaluate the evolving AI threat landscape, anticipate future risks, and proactively develop defenses as agent capabilities and autonomy increase.
• **Strengthen Adversarial Resilience:** Engineer defensive mechanisms within our browser surrogate to detect and neutralize complex context poisoning and injection attempts embedded in web content.

What You'll Bring: Qualifications

• BSc in Computer Science or significant, demonstrable experience in high-scale cloud engineering. A relevant MSc or PhD is a strong advantage.
• 3+ years of experience in applied AI, with a proven track record of deploying high-scale AI systems in production environments. Experience with agentic systems in production environments is a significant advantage.
• Expert-level proficiency in Python; deep experience with Kubernetes (k8s) and cloud-native orchestration; proficiency with advanced data modeling and version control.
• Significant experience in cybersecurity or browser-related technologies is highly preferred.
• Deep understanding of prompt engineering techniques and how they can be exploited within agentic systems.
• Demonstrated ability to explore ambiguous problem spaces, experiment with new ideas, and rapidly iterate toward effective security solutions.

Bonus Points (Nice to Have):

• Hands-on experience with orchestration frameworks such as LangChain or AutoGen, and/or standardized communication protocols like MCP.
• Experience building immutable event streams and high-speed data pipelines for real-time traffic analysis.
• A comprehensive understanding of how web pages are rendered and how to programmatically manipulate the Document Object Model (DOM) or Accessibility Tree to enhance security.
• A "security-first" mindset with a strong bias toward building auditable, traceable, and fault-tolerant systems.

MSGL-I4

Why Join Menlo Security?

Our culture is built on collaboration, inclusivity, and enjoyment. We live by five core values: Stay Aligned, Get It Done, Customer Empathy, Think Creatively, and Help Each Other Out. We champion open communication, support innovative ideas, and share a mutual commitment to achieving our goals together. Here, you'll find tremendous opportunities to take initiative, implement groundbreaking ideas, and have a direct hand in building a lasting legacy in cybersecurity.

All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

*TO ALL AGENCIES: Please, no phone calls or emails to any employee of Menlo Security outside of the Talent organization. Menlo Security’s policy is to only accept resumes from agencies via Ashby (ATS). Agencies must have a valid services agreement executed and must have been assigned by the Talent team to a specific requisition. Any resume submitted outside of this process will be deemed the sole property of Menlo Security. In the event a candidate submitted outside of this policy is hired, no fee or payment will be paid.*