Waverley Software is seeking a highly motivated and competent Security Analyst to join our team in developing an AI-powered security solution. You will play a critical role in identifying and mitigating security risks, ensuring data privacy compliance, and collaborating with engineers on integrating security best practices throughout the development process.
Responsibilities:
Threatening Behavior Identification for AI Training: Collaborate with and support data scientists in defining the characteristics and patterns within network data logs that represent security risks, issues, or unexpected situations. This includes identifying anomalies, suspicious activities, and deviations from normal network behavior. By defining these threat indicators, you will help shape the training dataset used to teach the AI model to recognize and flag potential security threats.
Security Controls for Automated Actions: Collaborate with engineers on defining and implementing security controls for automated threat mitigation and correction actions initiated by the AI. This includes ensuring actions are appropriate, have proper authorization, and minimize potential unintended consequences.
Data Security & Privacy for AI Training: Work with the data science team on defining and implementing secure data handling practices throughout the data ingestion, processing, and model training lifecycle. Ensure compliance with relevant data privacy regulations.
Security Review of AI Workflows: Conduct security reviews of the entire AI workflow, including data pipelines, model training processes, and automated response mechanisms. Identify and address potential vulnerabilities.
Alert & Incident Response Integration: Collaborate with the development team to ensure the AI integrates seamlessly with existing security information and event management (SIEM) systems and incident response workflows. This will enable automated threat notifications and facilitate efficient response actions.
Security Testing & Monitoring: Participate in security testing activities, including vulnerability scanning and penetration testing of the AI model. Continuously monitor the AI’s behavior for anomalous activity that might indicate security breaches.
Documentation & Knowledge Sharing: Document security findings, recommendations, and best practices for AI security. Work with the team to establish a culture of security awareness throughout the development process.
Required Skills and Qualifications:
Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or a related field.
A minimum of 10 years of experience in a security analyst role.
Strong understanding of security principles, threat modeling methodologies, and security best practices (OWASP, CWE, NIST CSF).
Experience with security testing tools and methodologies (vulnerability scanning, penetration testing).
Preferred Qualifications:
Experience working with AI or machine learning systems from a security perspective.
Experience in data security best practices (data encryption, access controls).
Familiarity with cloud security concepts and platforms.
Experience working in an agile development environment.
Suggested Certifications (Not mandatory): Security+, Certified Information Systems Security Professional (CISSP) (highly preferred), Certified Ethical Hacker (CEH), Cloud security certifications (AWS Security Specialty, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer)
