Information Security Analyst implementing security solutions at one of Brazil's largest banks. Focus on information security and compliance with internal policies and best practices.
About the role
- Enterprise AI Security Engineer securing AI-centric environments at Mercari. Collaborating with teams to implement zero-trust architecture and automate security solutions.
Responsibilities
- Building out the core controls to support securing a dynamic and AI centric work environment.
- Securing internal AI agent platforms and solutions together with implementers.
- Collaborating closely with the AI Taskforce, engineering, and IT teams to design and deploy secure foundations that meet stringent security requirements while maintaining minimal user friction.
- Implementing a zero-trust architecture to significantly enhance the overall security posture.
- Automating and optimizing security solutions to achieve a "secure by default" enterprise IT infrastructure.
- Developing and implementing security frameworks for enterprise IT solutions and AI agents.
- Conducting risk assessments and threat modeling for enterprise IT and AI systems to identify and mitigate potential vulnerabilities.
- Designing and implementing technical security solutions and mitigation strategies to ensure the protection and resilience of Mercari’s IT infrastructure and internal AI agent platforms.
- Automating manual processes and operational tasks across security systems.
- Focusing on optimizing configurations for Identity and Access Management (IAM), Endpoint Security, AI agent platforms, and Data Loss Prevention (DLP) systems.
- Establishing and maintaining security standards and guidelines for AI solutions and infrastructure.
- Collaborating with engineering and IT teams to secure enterprise IT systems and protect against new and evolving threats.
Requirements
- Bachelor's degree or equivalent practical experience in core cybersecurity domains related to IT.
- Understanding and ability to explain and apply core computer security concepts such as the CIA triad, principle of least privilege, authentication vs. authorization, etc.
- Experience in programming with one or more languages, including but not limited to Go, Python, or JavaScript.
- Familiarity with standard software development tools, such as Git, CI/CD tools, IaC, and shell scripting.
- Basic understanding of core AI security principles (OWASP AI/LLM Top Ten).
- Proficiency using AI tools for day to day productivity and to accelerate dashboarding and reporting.
- Proficiency in modern Identity and Access Management (IAM) systems, like Okta, Microsoft Entra ID.
- Strong teamwork skills and the ability to collaborate with others in a diverse environment.
- Experience working as a security architect or IT architect. (Preferred)
- Deep understanding of AI agent mechanisms, vulnerabilities, and attack methodologies. (Preferred)
- Experience in securing AI agent frameworks. (Preferred)
- Experience in managing Non-Human Identity (NHI) tools. (Preferred)
- Expertise in the security of cloud platforms (e.g., GCP, AWS, Microsoft Azure), especially securing multi-cloud networks and infrastructure, and designing cloud agnostic systems. (Preferred)
- Experience building, administrating, and improving IT security solutions (IAM, MDM, EDR, DLP, etc.) (Preferred)
- Familiarity with frameworks such as NIST AI Risk Management and Google’s Secure AI Framework, and OWASP Top 10 For Agentic Applications. (Preferred)
- Strong analytical and problem-solving skills, with an ability to think critically and objectively assess security risks. (Preferred)
- Ability to effectively present and communicate security threats and risks to any audience and impress upon them the mitigation techniques and strategies. (Preferred)
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Intern collaborating with security teams to ensure compliance and develop secure processes in fintech environment. Engaging in hands - on experience with application security and risk management.
![[solidcore] logo](/api/images/solidcore.jpg)
Director overseeing IT operations and cybersecurity at [solidcore]. Ensuring system reliability and compliance for HQ and studio locations.
Senior Manager of Cybersecurity application and cloud security at Medtronic. Leading teams to enhance security in cloud - native environments and software development.
Security Engineer designing and implementing secure architecture solutions for Disney's global technology ecosystem. Collaborating with teams to assess threats and secure AI/ML implementations and technologies.
Head of Information Security at Thndr, leading security strategy and governance across Egypt, UAE, and KSA. Responsible for managing risk and building trusted security function.
Security Lead responsible for security across product, cloud infrastructure, and internal systems. Aiming to enhance security measures and practices within a SaaS environment.
(Senior) Security Engineer establishing secure coding practices and driving DevOps automation for Paymenttools, enhancing payment security in Europe.
Senior Machine Learning Engineer developing AI/ML systems to tackle critical National Security challenges. Leading client engagement and delivering robust, production - ready machine learning solutions.
Internal Auditor at Leaseweb responsible for planning audits and assessing IT security frameworks. Collaborating with global teams to enhance security controls and mitigate risks.