Apply on Employer Site

NetSPI · 2 weeks ago

Senior Security Consultant (AI/ML Penetration Tester)

United States

Full-time

Remote

Mid, Senior Level

3+ years exp

NetSPI is a leader in Penetration Testing as a Service (PTaaS) and is seeking a Senior Security Consultant specializing in AI/ML Penetration Testing. The role involves conducting advanced testing on AI and machine learning systems, delivering actionable reports, and contributing to security best practices.

ComputerCyber SecurityInformation TechnologyNetwork SecurityService Industry

H1B Sponsor Likely

Responsibilities

Conduct engagements on AI/ML systems, web applications and API’s independently and provide technical oversight

Design and execute advanced adversarial testing (e.g., evasion, data poisoning, model extraction, inversion/inference) to expose vulnerabilities in AI/ML pipelines and architectures

Present comprehensive penetration test findings to clients while emphasizing AI/ML risks, and collaborate on remediation strategies with model hardening, adversarial training, and threat mitigation

Help author tools, presentations, white papers, and blog posts to share insights on AI/ML security best practices and emerging attack trends with the broader cybersecurity community. Contribute to the cybersecurity community through tools, presentations, white papers, and blogging

Review reports for accuracy in technical oversight, perform weekly QA oversight, and provide mentoring support to others

Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture

Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes

Participate in development, implementation, and oversight of testing, delivery, and management strategies for key client accounts

Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations

Qualification

Penetration TestingAI/ML SecurityOffensive ToolkitsML FrameworksAdversarial Machine LearningOWASP Top 10MITRE ATT&CKWindows InternalsLinux InternalsMacOS InternalsTechnical OversightModel InterpretabilityProgramming LanguagesOffensive Security CertificationsProblem-SolvingCommunication SkillsTeam CollaborationContinuous Learning

Required

Bachelor's degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience

Minimum of 3-5 years of work experience in Penetration Testing

Proficiency in using and customizing offensive toolkits for network, application, and AI/ML penetration testing

Thorough understanding of how major ML frameworks (e.g., Tensorflow, PyTorch) are implemented in real-world training and deployment pipelines

Understanding of how to deploy AI/ML models with LangChain, including secure configuration of data flows, environment isolation, and integration with production systems

Understanding of Adversarial Machine Learning and its practical applications

Familiarity with offensive tools, based on applicable skillset (e.g., Kali Linux, Burp Suite, Metasploit, Nessus)

Familiarity with offensive and defensive IT concepts and protocols

Extensive understanding of the OWASP Top 10, MITRE ATT&CK framework, and various security frameworks

Working knowledge of Windows, Linux and MacOS operating systems internals

Experience mentoring or coaching to growing team members, while sharing knowledge externally through blogs, hosting webinars, or presenting at conferences

Ability to work independently and as part of a team

Proficient communication skills, both written and verbal

Willingness to travel up to 5-10% minimum

This position requires an 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs

Preferred

Ability to provide technical and QA oversight on AI/ML service line

Comprehensive knowledge of secure AI/ML development protocols and architecture

Strong problem-solving skills and the ability to think like both an attacker and a defender

A continuous learning mindset to keep up to date with the rapidly evolving AI/ML and cybersecurity landscapes

Experience with model interpretability and explainability tools to understand model behavior and potential biases

Experience in ML model development, feature engineering, and data pre-processing

Experience in one or more of the following programming or scripting languages (e.g., Ruby, Python, Perl, C, C++, Java, and C#)

Offensive Security Certifications (e.g., GXPN, GPEN, OSCP, GWAPT)

Company

NetSPI

NetSPI is a cybersecurity company that offers enterprise security testing and attack surface management services.

Founded in 2001

Minneapolis, Minnesota, USA

501-1000 employees

https://www.netspi.com

H1B Sponsorship

NetSPI has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (1)

2024 (3)

2023 (1)

2022 (2)

2021 (5)

2020 (5)

Funding

Current Stage

Late Stage

Total Funding

$500M

Key Investors

Kohlberg Kravis Roberts

2022-10-05Private Equity· $410M

2021-05-12Private Equity· $90M

2017-04-21Private Equity

Leadership Team

Aaron Shilts

President and CEO

Alvaro Warden

Vice President, WW Channels @ NetSPI

Recent News

Techcircle

NetSPI’s CPTO on why proactive security is fast becoming the enterprise default

2026-01-12

EIN Presswire

The Top Breach & Attack Simulation Software According to the FeaturedCustomers Winter 2025 Customer Success Report

2025-12-16

Twin Cities

Business People: Former FDA chief Scott Gottlieb joins UnitedHealth board

2025-11-24

Company data provided by crunchbase