Contract Security Engineer – AI, Identity & Digital Commerce Security
ARCHIVED
We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.
6–12 Month Contract+ FL preferred | East or Central U.S. preferred, open to West Coast as wellHybrid – 4 days onsite preferredNo H1B sponsorship availableWe are hiring a senior, hands-on Security Engineer to help secure the next generation of AI-enabled customer experiences in a large-scale, consumer-facing digital commerce environment.This is a rare opportunity to work at the intersection of modern application security, identity and authorization, non-human identity, and emerging AI-driven workflows. You will partner directly with software engineers building customer-facing experiences and help ensure those systems are secure, resilient, and ready to scale.This is not a passive advisory role. We are looking for a builder -- someone who can engage deeply with engineering teams, review architecture, identify risk early, and help put practical guardrails around modern digital experiences as they are being built.What You’ll Be Working OnSecuring AI-enabled customer journeys across a modern digital commerce platformHelping define safe action boundaries, authorization controls, and runtime guardrails for AI-driven or agent-like behaviorsReviewing web, API, and microservices architectures for security gaps and design weaknessesSupporting secure design across customer-facing applications, backend services, and distributed systemsAdvising on OAuth/OIDC, delegated authorization, workload identity, and human-to-agent-to-tool attributionPartnering with engineering teams on threat modeling, risk reduction, and secure implementation patternsHelping teams move fast while building security in early and intelligentlyWhat We’re Looking For8+ years of experience in security engineering, application security, or product securityStrong hands-on experience with web application and API securityExperience in consumer-facing digital platforms, eCommerce, booking, personalization, or other high-traffic environmentsSolid understanding of OAuth, OIDC, authorization models, service/workload identity, and non-human identityFamiliarity with AI-enabled applications, automation, chatbots, copilots, or agent-like systemsAbility to work directly with developers and influence secure outcomes in a fast-moving environmentExperience with cloud-native architectures, microservices, and modern DevSecOps / SDLC practicesNice to HaveExperience with agentic AI security, runtime policy enforcement, or AI guardrail designCIAM familiarityWAF, API gateway, bot mitigation, or fraud/abuse prevention experienceAWS or other hyperscale cloud experienceWhy This Role Stands OutThis is a chance to work on real-world AI security challenges in a live, consumer-facing environment -- not just policy discussions or lab concepts. The right person will help shape how modern customer experiences are secured as AI becomes part of the product itself.If you enjoy working close to engineering, solving hard security problems in modern architectures, and helping build secure digital experiences at scale, this is the kind of role that does not come around often.