Sr AI Security Engineer

Job#: 3035075Job Description:Role: Senior AI Security EngineerDuration: Contract 8 months, potential to extendWork Location: 333 S Wabash Ave, Chicago, ILWork Model: Hybrid, onsite 3 days/weekPay Rate: $90-95/hourRole Overview:We are seeking an experienced AI Security Engineer to lead the design, assessment, and governance of security controls for AI and machine learning systems across the enterprise. This role sits at the intersection of cybersecurity architecture, identity and access management (IAM), and emerging AI/ML technologies. You will be responsible for ensuring that AI workloads—including large language models, agentic frameworks, and ML pipelines—are deployed securely within a complex, regulated environment.The ideal candidate combines deep security architecture expertise with practical, hands-on experience in AI systems. Given that enterprise AI adoption is still a rapidly evolving discipline, we value demonstrated engagement with AI security concepts and tooling proportional to the maturity of the field.Key Responsibilities:Design and implement security architectures for AI/ML platforms, including model hosting environments, inference endpoints, training pipelines, and agentic AI systems. Develop and enforce identity, authentication, and authorization (IAA) frameworks for AI workloads, ensuring least-privilege access, service identity governance, and secure token flows (e.g., OAuth 2.0, OBO, managed identities). Lead threat modeling and risk assessments for AI deployments, leveraging frameworks such as OWASP AI Top 10, MITRE ATLAS, and NIST AI RMF. Evaluate and harden AI supply chain components, including model registries, MCP servers, API gateways, and third-party integrations. Define IAM policies and role-based access controls for AI development and production environments across cloud platforms (Azure, AWS, or GCP). Collaborate with data science, platform engineering, and compliance teams to embed security guardrails into the AI development lifecycle without impeding velocity. Author security architecture documents, threat and risk assessments, tactical exception requests, and developer implementation guides for AI-related initiatives. Monitor the evolving AI threat landscape—including prompt injection, tool poisoning, data exfiltration via agentic workflows, and model manipulation—and translate findings into actionable controls. Present technical security findings, risk postures, and architectural recommendations to senior leadership, governance boards, and cross-functional stakeholders in clear, accessible language. Contribute to enterprise security standards and policies governing AI adoption, including acceptable use, data handling, and model governance. Required Qualifications:Security Architecture & Engineering7+ years of experience in cybersecurity, with at least 3 years focused on security architecture or engineering. Demonstrated ability to design end-to-end security architectures for cloud-native and hybrid enterprise environments. Strong working knowledge of network security, application security, data protection, and zero-trust principles. Identity, Authentication & Access Management (IAA/IAM) Hands-on experience designing and implementing IAM solutions in enterprise environments (e.g., Entra ID / Azure AD, Okta, Ping, AWS IAM). Deep understanding of authentication and authorization protocols: OAuth 2.0, OIDC, SAML, SCIM, and token-based flows (including on-behalf-of and client credential grants). Experience with service identity management, managed identities, workload identity federation, and privileged access governance for non-human actors. AI / Machine Learning Security1-3 years of demonstrated experience working with AI/ML systems in a security, governance, or engineering capacity. This is calibrated to the maturity of the enterprise AI space—we recognize the field is young and value depth of engagement over length of tenure. Practical understanding of LLM deployment patterns, agentic AI frameworks (e.g., LangChain, LangGraph), and the security risks they introduce. Familiarity with AI-specific threat vectors: prompt injection, training data poisoning, model inversion, tool/plugin abuse, and supply chain risks in model and connector ecosystems. Exposure to AI governance frameworks and standards: NIST AI RMF, EU AI Act, OWASP AI Top 10, MITRE ATLAS. Communication & Stakeholder EngagementExcellent written and verbal communication skills, with a proven ability to translate complex technical security concepts into business-relevant language for executive and non-technical audiences. Experience authoring formal security documentation: architecture decision records, risk assessments, implementation guides, and policy documents. Demonstrated ability to influence cross-functional teams, facilitate architecture review boards, and present security recommendations with clarity and confidence. Preferred Qualifications: Experience in financial services, healthcare, or other heavily regulated industries with multi-jurisdictional compliance requirements (e.g., SOX, GDPR, MiFID II, SR 11-7). Hands-on experience with Microsoft Azure and M365 security ecosystems, including Entra ID, Azure AI Foundry, Copilot Studio, Defender for Cloud, and Purview. Familiarity with API gateway security patterns for AI services (e.g., Azure APIM, Kong, Cloudflare AI Gateway). Knowledge of model security scanning, container security for ML workloads, and secure MLOps pipeline design. Relevant certifications such as CISSP, CCSP, CISM, Azure Security Engineer Associate, or AI-specific credentials. Experience evaluating or implementing Model Context Protocol (MCP) security controls. Background in contributing to security communities of practice, mentoring junior engineers, or publishing security research.EEO EmployerApex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 844-463-6178.Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details.Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our ‘Welcome Packet’ as well, which an Everforth Apex team member can provide.Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details.Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our ‘Welcome Packet’ as well, which an Everforth Apex team member can provide.© 2026 Everforth, Inc. All rights reserved.Everforth Apex Systems is part of the Commercial Segment of Everforth, Inc.NYSE: EFOR4400 Cox RoadSuite 200Glen Allen, Virginia 23060Everforth Apex is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Benefits Department at [email protected] or 804-523-8228. (Do not submit resumes or solicit consultants to this email address). UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex.