Note: The job is a remote job and is open to candidates in USA. Cerebras Systems builds the world's largest AI chip and is seeking a Principal AI Security Engineer to lead security engineering for enterprise IT and AI platforms. This role involves designing and implementing security controls to protect sensitive data and systems while ensuring safe development practices.
Responsibilities
- Define security architecture and build controls for AI platforms, training and inference workflows, model-serving systems, customer workloads, developer workflows, and agentic
- Develop reusable AI and agent security patterns for identity, authorization, delegated authority, scoped tool access, MCPs, connectors, secrets, approvals, isolation, auditability, and
- Design runtime controls that constrain execution, access, data exposure, model and tool interaction, and blast radius
- Build security capabilities as code using infrastructure as code, configuration as code, policy as code, GitOps, CI/CD, and automated validation
- Define secure development patterns for AI systems, agents, prompts, tools, models, policies, evaluations, releases, and rollback
- Automate security reviews, policy checks, evidence collection, control validation, and remediation
- Instrument AI, agent, and platform activity with telemetry, traceability, policy decisions, audit logs, anomaly signals, and response workflows
- Lead hands-on security reviews and influence product, platform, infrastructure, and security architecture through practical design changes and reusable controls
Skills
- 10+ years of experience in security engineering, platform security, infrastructure security, product security, or related technical security roles
- Strong hands-on engineering ability in Python and at least one additional production
- Experience designing, building, operating, and improving security controls as
- Strong cloud and infrastructure security experience, preferably with AWS, including IAM, networking, secrets management, logging, and cloud-native control planes
- Deep understanding of identity and access systems, including SSO, MFA, OAuth, service accounts, workload identity, authorization, privileged access, and least privilege
- Practical experience securing runtime environments such as containers, Kubernetes, isolated workloads, secure development environments, distributed compute platforms, or production service infrastructure
- Familiarity with AI security, LLM application security, agentic workflows, MCPs, prompt injection, autonomous coding agents, or AI platform security
- Ability to reason about cross-system risk involving identity, data, models, tools, networks, workflows, approvals, and automation
- Strong written communication skills and the ability to influence senior technical stakeholders across Security, Product, IT, Infrastructure, and Engineering
- AI, ML, training, inference, model-serving, or large-scale compute
- Coding agents, agent platforms, MCP servers, internal developer platforms, or AI-assisted development environments
- Workload identity, secrets brokers, token brokers, short-lived credentials, privileged access, or zero-standing-privilege architectures
- Policy-as-code, authorization services, runtime enforcement layers, or security control
- Software delivery security, including source control, CI/CD, build systems, artifacts, provenance, signing, and release gates
- Detection, investigation, and response workflows for cloud, infrastructure, identity, AI, or agent
Benefits
- Job stability with startup vitality
- Simple, non-corporate work culture that respects individual beliefs
- Continuous learning, growth and support of those around them
Company Overview
Company H1B Sponsorship