AI Security Engineer – GRC

🔥 0 minutes ago

🇺🇸 United States – Remote

💵 $125.4k - $216k / year

⏰ Full Time

🟠 Senior

🔴 Lead

👮‍♂️ Cybersecurity / Security Engineer

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

SCAN

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 1977

⚕️ Healthcare Insurance

👥 B2C

Healthcare Insurance • B2C

SCAN is a mission-driven healthcare organization focused on reinventing aging by delivering evidence-based, patient-centered care and coverage for older adults. It operates an integrated portfolio including health insurance plans with innovative benefits, in-home and virtual primary care, support programs for caregivers and homebound older adults, and specialized services for vulnerable populations. SCAN also invests in and partners with companies that advance care models and resources to help older adults remain healthy and independent at home.

📋 Description

• AI Vendor & Technology Evaluation • Secure AI Implementation Guidance for Development Teams • AI Risk Management & Compliance • Security Integration Reviews • Training , Awareness & Policy

🎯 Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a closely related field • 7+ years of progressive experience in information security, with a minimum of 2 years focused on AI/ML security or applied AI technology evaluation • Demonstrated hands-on experience with one or more of the following: Copilot Studio, Azure AI Foundry, Claude / Anthropic APIs, OpenAI API, GitHub Copilot, or LLM agentic frameworks (LangChain, AutoGen, Semantic Kernel) • Experience working in a HIPAA-regulated environment; healthcare industry background strongly preferred • Proven track record conducting vendor risk assessments and producing executive-level risk documentation • Deep understanding of LLM attack surface: prompt injection, indirect prompt injection, system prompt extraction, and model manipulation • Familiarity with AI red-teaming methodologies and tools (Garak, PyRIT, PromptBench) • Knowledge of OWASP Top 10 for LLM Applications • Ability to audit and secure Model Context Protocol (MCP) server implementations. • Experience securing AI CLIs including credential storage, environment variable exposure, and shell integration risks

🏖️ Benefits

• Annual employee bonus program • Robust Wellness Program • Generous paid-time-off (PTO) • 11 paid holidays per year, 1 floating holiday, birthday off, and 2 volunteer days • Excellent 401(k) Retirement Saving Plan with employer match • Robust employee recognition program • Tuition reimbursement