Sciata

Senior AI Security Platform Engineer / Tech Lead

USPosted 10 days ago

Job Description

Seeking a Senior AI Security Platform Engineer / Tech Lead - Agentic Vulnerability Remediation Platform

  • Must be a US Citizen or Green Card holder | No third-party or C2C partnerships at this time
  • Location: Remote / U.S. Based
  • Employment Type: Contract, 6-12 months+
  • Experience: 8+ years
  • Domain: Cybersecurity, AI, Platform Engineering

We are seeking an experienced Senior AI Security Platform Engineer / Tech Lead to support the buildout of an Agentic Vulnerability Remediation Platform. This is a high-impact opportunity for someone who can architect, build, and operate AI-driven systems that autonomously identify, prioritize, and remediate security vulnerabilities at scale.

In this role, you will serve as a technical leader across engineering, security, platform, and AI teams. You will help design intelligent agentic pipelines, developer tooling, and secure automation workflows that accelerate the vulnerability remediation lifecycle.

Key Responsibilities

  • Design and implement production-grade agentic systems capable of autonomous vulnerability triage, analysis, and patch generation using LLM-based orchestration frameworks such as LangChain, LangGraph, AutoGen, CrewAI, Semantic Kernel, or similar tools.
  • Build and maintain scalable backend platforms, APIs, SDKs, and developer tooling used by internal engineering teams and security practitioners.
  • Define architectural best practices for agent workflow management, tool usage, memory, guardrails, observability, and safe automated actions.
  • Integrate the platform with vulnerability scanners, SAST/DAST tools, SBOM systems, ticketing platforms, and CI/CD pipelines.
  • Lead complex cross-functional technical initiatives across security engineering, platform infrastructure, AI/ML, and application development teams.
  • Define technical roadmaps, contribute to engineering strategy, and help drive build-versus-buy decisions.
  • Mentor engineers on agentic AI patterns, secure coding practices, DevSecOps automation, and platform reliability.
  • Conduct design reviews, architecture decision records, and retrospectives to continuously improve engineering quality.
  • Ensure the platform meets enterprise-grade standards for availability, performance, security, and auditability.
  • Implement observability, including logging, metrics, tracing, and runbooks for agentic workflows in production.
  • Partner with security teams to ensure the platform follows secure-by-design principles.
  • Drive automation and feedback loops to improve MTTR for vulnerability remediation.

Required Qualifications

  • 8+ years of professional software engineering experience building and operating production platforms, backend services, or developer tooling.
  • Proven experience leading complex, cross-team technical initiatives from design through production delivery.
  • Hands-on experience with AI/ML systems in production, especially LLM-based agents, orchestration, tool-calling, or prompt engineering at scale.
  • Strong experience with Python and/or Go for backend development; Rust or Java experience is a plus.
  • Strong knowledge of cloud platforms such as AWS, GCP, or Azure.
  • Experience with infrastructure-as-code tools such as Terraform or Pulumi.
  • Experience with Docker, Kubernetes, and modern CI/CD systems such as GitHub Actions, ArgoCD, or Tekton.
  • Familiarity with agentic AI frameworks such as LangGraph, AutoGen, CrewAI, Semantic Kernel, LangChain, or similar technologies.
  • Understanding of common vulnerability classes, including CVEs, CWEs, OWASP Top 10, and remediation strategies.
  • Experience integrating APIs and tools across security, DevOps, and engineering platforms.
  • Strong communication skills with the ability to influence technical direction across multiple teams.

Preferred Qualifications

  • Prior experience with security tooling, vulnerability management, DevSecOps automation, or application security.
  • Experience building autonomous remediation, code-fix generation, patch generation, or PR automation pipelines.
  • Experience with security tools such as Snyk, Veracode, Semgrep, Wiz, Tenable, or similar platforms.
  • Knowledge of software supply chain security, SBOM standards such as SPDX or CycloneDX, and dependency analysis.
  • Familiarity with static analysis, dynamic analysis, and AST manipulation for automated code fixes.
  • Experience working in regulated environments such as finance, healthcare, government, or other compliance-heavy industries.
  • Familiarity with compliance frameworks such as SOC 2, FedRAMP, or ISO 27001.
  • Certifications such as CISSP, CEH, AWS/GCP Security Specialty, or Certified Kubernetes Security Specialist are a plus.
  • Contributions to open-source security, AI/ML, or developer tooling projects are a plus.

What You Will Work On

This role sits at the intersection of AI, cybersecurity, and platform engineering. You will work on agentic remediation pipelines that autonomously detect, classify, and generate fixes for vulnerabilities across large codebases.

You will also help build LLM orchestration layers that coordinate multi-step reasoning, tool invocation, verification loops, and secure code generation. The role will include building developer-facing APIs, SDKs, data pipelines, feedback systems, and policy frameworks that ensure automated remediation actions are safe, auditable, explainable, and production-ready.

Ideal Candidate Profile

The ideal candidate is a senior-level software engineering leader with hands-on experience building scalable platforms and a strong understanding of AI-driven automation, security tooling, and DevSecOps. This person should be comfortable working across teams, leading architecture discussions, mentoring engineers, and delivering production-grade systems in complex enterprise environments.

Apply for this role

Keep looking

Similar Remote AI Jobs