Apply on Employer Site

TAG - The Aspen Group · 1 week ago

AI Security Engineer

Chicago, IL

Full-time

Onsite

Senior Level

$130K/yr - $150K/yr

5+ years exp

The Aspen Group (TAG) is one of the largest retail healthcare business support organizations in the U.S., focused on improving healthcare experiences. They are seeking an AI Security Engineer to design and implement security controls for AI systems, protecting them from various threats and ensuring compliance throughout the AI/ML lifecycle.

CosmeticsDentalHealth CareWellness

H1B Sponsor Likely

Hiring Manager

Kassandra Mantz

Responsibilities

Collaboratively develop agent RBAC (role-based access control) to ensure AI agents operate under permissions aligned to firm roles, enforcing least-privilege access

Design integrations for AI systems with corporate IAM/SSO (Entra, Okta, etc.) to manage persona- and role-based access across the enterprise

Design Data Loss Prevention (DLP) and redaction pipelines to prevent confidential, regulated, or proprietary data from being sent to external LLM endpoints

Provide technical advice, direction, and hands-on support to design and develop safe, compliant, and resilient AI workflows

Evaluate existing and proposed AI/ML architectures for bias, fairness, drift, hallucination, and security risks; recommend controls aligned with NIST AI RMF, EU AI Act, ISO/IEC 42001, CIS

Collaborate with Information Security, Cloud, Governance, and Engineering teams to implement standardized AI safety and compliance practices

Actively contribute to the development of AI security standards, playbooks, and architectural patterns

Automate guardrails, compliance checks, and AI gateway protections for scale and efficiency

Build and maintain initiative-level artifacts, including AI policy-as-code configs (YAML), architectural diagrams, and risk assessments

Monitor, log, and audit AI activity for policy violations, compliance tracking, and security event correlation. YAML-based guardrails, architectural diagrams, and AI risk assessments

Design and build systems to detect and prevent AI abuse, such as anti-abuse agents

Perform technical security assessments, code reviews, and penetration testing on AI products and systems

Integrate security controls throughout the AI/ML lifecycle, from data handling and model training to deployment and monitoring

Develop and implement AI-driven automation for tasks like real-time alert enrichment, log analysis, and incident triage using tools like Security Copilot and other AI-assisted platforms

Research and reproduce vulnerabilities in AI systems, develop mitigation strategies, and work with engineering teams to improve security

Contribute to creating and implementing governance policies, security standards, and privacy frameworks for AI systems

Develop AI-specific incident response plans and playbooks

Stay up-to-date on emerging AI security threats, such as adversarial attacks, prompt injection, and data leakage

Qualification

AI security controlsSecure software developmentCybersecurity experienceCloud securityCryptography controlsAI/ML lifecycleSecurity tools proficiencyState privacy lawsProblem-solving skillsCommunication skillsLeadership skillsTrustworthiness

Required

At least 5+ years' experience in cybersecurity, including compliance and risk management with a system and network security engineering background

Strong background in traditional cybersecurity, including networking, web-based protocols, and security systems

Experience in secure software development, including secure coding for AI-powered applications

Familiarity with AI concepts, machine learning, and the AI/ML lifecycle

Experience with implementing security controls like encryption, access controls, and authentication for AI systems

Experience with security tools and platforms like Chronicle & Orca/Wiz, and familiarity with concepts like SAST/DAST

Excellent problem-solving, communication, and leadership skills

Experience with dynamic and static analysis tools

Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively

Bachelor's degree in computer science, information assurance, MIS or related field, or equivalent

5-7+ years of related experience required

SANS certifications (GWAPT) and others; CISSP (preferred, or CSSLP), OSCP (and related)

Preferred

Experience with applications hosted in Google Cloud Platform (GCP), Amazon Web Services (AWS) or Microsoft Azure

Experience with cryptography controls and measures to secure applications and data

Proficiency with Terraform, Python, and cloud automation

Prior experience in cloud security, data protection, and SIEM/logging for AI traffic

Experience with one or more of the following: ISO 27001, NIST, PCI Data Security Standard (PCI DSS), HIPAA, Health Information Technology for Economic and Clinical Health (HITECH) Act, SOX, the General Data Protection Regulation (GDPR), Center for Internet Security (CIS) standards or Service Organization Controls (SOC) 2

Working knowledge of Windows, Linux and Unix

Familiarity with state privacy laws

Highly trustworthy; leads by example

Benefits

Paid time off

Health

Dental

Vision

401(k) savings plan with match

Company

TAG - The Aspen Group

When we launched Aspen Dental, we set out to break down the barriers that made it hard for patients to keep up with their dental health — affordability, transparency, and access.

Founded in 1998

Chicago, Illinois, USA

10001+ employees

https://www.teamtag.com

H1B Sponsorship

TAG - The Aspen Group has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2024 (3)

2023 (20)

2022 (16)

2021 (14)

2020 (7)