CriblDevOps

Staff AI Security Engineer

Remote$128,000 - $200,000Posted today

Cribl is building telemetry infrastructure for the AI era, partnering with major enterprises to enable secure and scalable AI adoption. They are seeking a Staff AI Security Engineer to develop security and governance frameworks for AI systems, ensuring safe and compliant AI integration across the company.

Location: Remote

Salary: $128,000 - $200,000

Responsibilities

Define, threat model, and operationalize security architecture for Cribl’s internal AI platform, including standards, controls, and secure-by-design guidance.
Partner with Business Operations to maintain visibility into AI tools, licenses, API tokens, MCP servers, and workflows, monitoring for high-risk patterns.
Own the framework for vetting MCP servers, maintaining an approved registry, defining risk tiers, and enforcing secure connection patterns.
Establish secure patterns for secrets management, non-human identities, scoped credentials, OAuth-based access, and token governance.
Design and deploy guardrails for prompt injection defense, validation, human-in-the-loop approvals, and controls for high-risk workflows.
Build Cribl’s observability backbone for AI systems, including telemetry pipelines, abuse detection, audit trails, threat hunting, and incident response.
Partner with Compliance team to drive documentation and control readiness for AI-related obligations and customer scrutiny.
Establish security controls for AI-assisted internal development, secure coding practices, secrets management, and review patterns for AI-generated code.
Define and track metrics for AI security, including shadow AI exposure, control coverage, incident trends, and security review turnaround.

Requirements

7+ years of experience in security engineering, application security, cloud security, identity and access management, detection engineering, or related roles.
Strong hands-on experience with modern LLM and agentic systems, including threat models for prompt injection, tool use, model access, RAG, AI coding tools, and API-driven integrations.
Proven experience with OAuth, service identities, secrets management, RBAC / ABAC / scoped permissions, auditability, and secure-by-default architecture patterns.
Experience designing risk-tiered controls, approval models, and protective guardrails that balance innovation with compliance and operational needs.
Ability to operationalize telemetry, define detections, investigate security signals, and build response paths for new threat surfaces.
Familiarity with frameworks and customer expectations relevant to enterprise AI governance, including NIST AI RMF, ISO 42001, SOC 2, GDPR, SOX.
Strong written and verbal communication skills, with the ability to simplify risk, controls, and tradeoffs for engineers, business stakeholders, and senior leaders.
Comfort creating the first version of registries, standards, playbooks, and guardrails. Ambiguity energizes you.
You care about reducing risk while enabling AI adoption.