Staff Product Security

Alpha Sense

7+ Years | United States (Remote) | Full Time | 1 day ago
Apply Now

Job Summary

AlphaSense is seeking a Staff Product Security Engineer to lead the design and implementation of secure, scalable, and trustworthy products across AI, data, and cloud-native systems. This role involves embedding security by design throughout the product lifecycle, conducting secure design reviews, threat modeling, and partnering with engineering and product teams to ensure security, privacy, and compliance. The engineer will also focus on securing AI/ML systems, software supply chain, and promoting a security-first culture.

Must Have

  • Embed robust security practices throughout the software and AI development lifecycle (SDLC).
  • Lead secure design reviews, threat modeling, and risk assessments for AI-driven products, APIs, and backend services.
  • Partner with engineering and product teams to ensure security, privacy, and compliance by design.
  • Build and maintain security automation and governance frameworks that integrate seamlessly into development workflows.
  • Architect and enforce security controls for AI/ML systems, including model training, data pipelines, and inference environments.
  • Identify and mitigate AI-specific attack vectors such as data poisoning, model inversion, prompt injection, and model theft.
  • Collaborate with governance and compliance teams to align with ethical AI principles and frameworks like NIST AI RMF and the EU AI Act.
  • Implement model provenance, integrity, and auditability controls to ensure responsible and secure AI operations.
  • Partner with DevOps and SRE teams to secure service meshes, container networking, and secrets management.
  • Drive software supply chain security, including artifact integrity, dependency management, and vulnerability reduction.
  • Build internal frameworks for continuous assurance and real-time vulnerability management.
  • Define and maintain reference security architectures for microservices, APIs, and AI-powered systems deployed in the cloud.
  • Mentor teams on secure coding, containerization best practices, and AI risk management.
  • Promote a security-first culture through advocacy, documentation, and training.
  • Represent product security in cross-functional initiatives and leadership discussions.
  • 7+ years of experience in product, application, or cloud security engineering.
  • Deep understanding of secure SDLC, threat modeling, and secure architecture design.
  • Proven expertise with AWS cloud security concepts and best practices.
  • Strong experience with container security, orchestration, and runtime protection.
  • Proficiency in Python, Java, and/or JavaScript for security automation, code review, and tooling.
  • Experience securing AI/ML pipelines, data workflows, or model-serving infrastructure.
  • Familiarity with DevSecOps and continuous integration/deployment environments.

Good to Have

  • Experience with GCP or Azure cloud platforms.
  • Knowledge of AI and LLM security.
  • Experience with software supply chain security and artifact integrity verification.
  • Familiarity with compliance and governance frameworks (SOC 2, ISO 27001, NIST 800-53, NIST AI RMF).
  • Certifications such as CKS (Certified Kubernetes Security Specialist), CISSP, CSSLP, or AI/ML-focused security credentials.

Perks & Benefits

  • Work on cutting-edge security challenges in a fast-growing company.
  • Opportunity to shape and drive product security strategy.
  • Collaborative and security-minded engineering culture.
  • Competitive compensation.
  • Benefits.
  • Career growth opportunities.
  • Performance-based bonus.
  • Equity.
  • Generous benefits program.

Job Description

About AlphaSense:

The world’s most sophisticated companies rely on AlphaSense to remove uncertainty from decision-making. With market intelligence and search built on proven AI, AlphaSense delivers insights that matter from content you can trust. Our universe of public and private content includes equity research, company filings, event transcripts, expert calls, news, trade journals, and clients’ own research content.

The acquisition of Tegus by AlphaSense in 2024 advances our shared mission to empower professionals to make smarter decisions through AI-driven market intelligence. Together, AlphaSense and Tegus will accelerate growth, innovation, and content expansion, with complementary product and content capabilities that enable users to unearth even more comprehensive insights from thousands of content sets. Our platform is trusted by over 6,000 enterprise customers, including a majority of the S&P 500. Founded in 2011, AlphaSense is headquartered in New York City with more than 2,000 employees across the globe and offices in the U.S., U.K., Finland, India, Singapore, Canada, and Ireland. Come join us!

About the Role

We’re looking for a Staff Product Security Engineer to lead the design and implementation of secure, scalable, and trustworthy products spanning AI, data, and cloud-native systems. You’ll work closely with engineering, data science, and infrastructure teams to embed security by design throughout the product lifecycle. This role sits at the intersection of AI/ML security, secure product development, and container/cloud-native protection, helping define the architecture, automation, and frameworks that enable secure, intelligent products at scale.

What You’ll Do

  • Embed robust security practices throughout the software and AI development lifecycle (SDLC).
  • Lead secure design reviews, threat modeling, and risk assessments for AI-driven products, APIs, and backend services.
  • Partner with engineering and product teams to ensure security, privacy, and compliance by design.
  • Build and maintain security automation and governance frameworks that integrate seamlessly into development workflows.
  • Architect and enforce security controls for AI/ML systems, including model training, data pipelines, and inference environments.
  • Identify and mitigate AI-specific attack vectors such as data poisoning, model inversion, prompt injection, and model theft.
  • Collaborate with governance and compliance teams to align with ethical AI principles and frameworks like NIST AI RMF and the EU AI Act.
  • Implement model provenance, integrity, and auditability controls to ensure responsible and secure AI operations.
  • Partner with DevOps and SRE teams to secure service meshes, container networking, and secrets management.
  • Drive software supply chain security, including artifact integrity, dependency management, and vulnerability reduction.
  • Build internal frameworks for continuous assurance and real-time vulnerability management.
  • Define and maintain reference security architectures for microservices, APIs, and AI-powered systems deployed in the cloud.
  • Mentor teams on secure coding, containerization best practices, and AI risk management.
  • Promote a security-first culture through advocacy, documentation, and training.
  • Represent product security in cross-functional initiatives and leadership discussions.

What We Are Looking For:

Required:

  • 7+ years of experience in product, application, or cloud security engineering.
  • Deep understanding of secure SDLC, threat modeling, and secure architecture design.
  • Proven expertise with AWS cloud security concepts and best practices.
  • Strong experience with container security, orchestration, and runtime protection.
  • Proficiency in Python, Java, and/or JavaScript for security automation, code review, and tooling.
  • Experience securing AI/ML pipelines, data workflows, or model-serving infrastructure.
  • Familiarity with DevSecOps and continuous integration/deployment environments.

Nice to Have:

  • Experience with GCP or Azure cloud platforms.
  • Knowledge of AI and LLM security
  • Experience with software supply chain security and artifact integrity verification.
  • Familiarity with compliance and governance frameworks (SOC 2, ISO 27001, NIST 800-53, NIST AI RMF).
  • Certifications such as CKS (Certified Kubernetes Security Specialist), CISSP, CSSLP, or AI/ML-focused security credentials.

Why Join Us?

  • Work on cutting-edge security challenges in a fast-growing company.
  • Opportunity to shape and drive product security strategy.
  • Collaborative and security-minded engineering culture.
  • Competitive compensation, benefits, and career growth opportunities.

For base compensation, we set standard ranges for all roles based on function and level benchmarked against similar stage growth companies and internal comparables. In order to be compliant with local legislation, as well as to provide greater transparency to candidates, we share salary ranges on all job postings regardless of desired hiring location. Final offer amounts are determined by multiple factors including candidate experience/expertise and may vary from the amounts listed below.

You may also be offered a performance-based bonus, equity, and a generous benefits program.

Base Compensation Range

$184,000 - $252,000 USD

AlphaSense is an equal-opportunity employer. We are committed to a work environment that supports, inspires, and respects all individuals. All employees share in the responsibility for fulfilling AlphaSense’s commitment to equal employment opportunity. AlphaSense does not discriminate against any employee or applicant on the basis of race, color, sex (including pregnancy), national origin, age, religion, marital status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any other non-merit factor. This policy applies to every aspect of employment at AlphaSense, including recruitment, hiring, training, advancement, and termination.

In addition, it is the policy of AlphaSense to provide reasonable accommodation to qualified employees who have protected disabilities to the extent required by applicable laws, regulations, and ordinances where a particular employee works.

Recruiting Scams and Fraud

We at AlphaSense have been made aware of fraudulent job postings and individuals impersonating AlphaSense recruiters. These scams may involve fake job offers, requests for sensitive personal information, or demands for payment. Please note:

  • AlphaSense never asks candidates to pay for job applications, equipment, or training.
  • All official communications will come from an @alpha-sense.com email address.
  • If you’re unsure about a job posting or recruiter, verify it on our Careers page.

If you believe you’ve been targeted by a scam or have any doubts regarding the authenticity of any job listing purportedly from or on behalf of AlphaSense please contact us. Your security and trust matter to us.

Create a Job Alert

Interested in building your career at AlphaSense? Get future opportunities sent straight to your email.

Apply for this job

  • indicates a required field

Autofill with MyGreenhouse

First Name*

Last Name*

Preferred First Name

Email*

Phone

Country*

Phone*

Location (City)*

Locate me

Resume/CV*

AttachAttach

Dropbox

Google Drive

Enter manuallyEnter manually

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

AttachAttach

Dropbox

Google Drive

Enter manuallyEnter manually

Accepted file types: pdf, doc, docx, txt, rtf

LinkedIn Profile*

What is your target compensation range?

Are you currently eligible to work in the United States of America?*

Select...

Do you now or in the future require Visa sponsorship to continue working in the United States?*

Select...

Have you previously been employed by AlphaSense or any of its entities; or by an agency representing AlphaSense? *

Select...

U.S. Standard Demographic Questions

We invite applicants to share their demographic background. If you choose to complete this survey, your responses may be used to identify areas of improvement in our hiring process.

How would you describe your gender identity? (mark all that apply)

Select...

How would you describe your racial/ethnic background? (mark all that apply)

Select...

How would you describe your sexual orientation? (mark all that apply)

Select...

Do you identify as transgender?

Select...

Do you have a disability or chronic condition (physical, visual, auditory, cognitive, mental, emotional, or other) that substantially limits one or more of your major life activities, including mobility, communication (seeing, hearing, speaking), and learning?

Select...

Are you a veteran or active member of the United States Armed Forces?

Select...

Submit application

16 Skills Required For This Role

Team Management Cross Functional Risk Management Talent Acquisition Game Texts Software Development Lifecycle Sdlc Networking Aws Azure Cloud Security Data Science Microservices Kubernetes Python Javascript Java