AI Security Analyst
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
AI Security Analyst focusing on AI-specific risk management and compliance support at 8am. Identifying and mitigating risks associated with AI use across internal tools and platforms.
Responsibilities:
- Identify and mitigate key AI-specific threats, including: Prompt injection, jailbreaking, and adversarial inputs.
- Sensitive information disclosure (e.g., data leakage via inputs/outputs).
- Insecure output handling and excessive agency.
- Model misuse, abuse, or overreliance.
- Supply chain vulnerabilities in third-party AI services/models.
- Inference-side attacks and exfiltration risks.
- Partner with Engineering, Product, Legal, and Privacy teams to review AI use cases, conduct risk assessments, and recommend controls before production deployment.
- Evaluate third-party AI vendors and services for security posture.
- Develop, implement, and enforce technical and policy-based guardrails (e.g., input/output filtering, usage policies) for responsible AI adoption.
- Support AI-related incident response, investigation, and post-incident analysis.
- Perform SOC-style monitoring, alert triage, and investigation across cloud, application, and AI-enabled systems (including AI API usage and data flows).
- Enhance detection rules and logging for AI-specific activity.
- Contribute to threat modeling, particularly for AI integrations.
Requirements:
- 3–7 years of experience in information security, security operations, application security, or related fields.
- Working knowledge of: Hands-on experience securing AI/LLM applications or internal AI tools (e.g., guardrails, monitoring).
- Deep knowledge of AI governance frameworks (NIST AI RMF, ISO 42001).
- Conduct red team exercises to identify vulnerabilities and break system assumptions.
- Leverage working knowledge of scripting (python preferred) to analyze security scripts and interpret testing outputs.
- Familiarity with AI concepts, architectures, and common risks (e.g., OWASP Top 10 for LLMs).
- Experience supporting compliance/audit activities (SOC 2, PCI, HIPAA, ISO).
- Strong communication skills and ability to collaborate in a fast-paced SaaS environment.
- Demonstrated experience leveraging AI tools and technologies to improve workflows, enhance decision-making, or drive innovation.
- Background in SOC operations or regulated industries (fintech, payments, healthcare, legal tech).
- Experience with privacy/data protection controls in AI contexts.
Benefits:
- Health Insurance Coverage: We offer our 8Team a variety of medical, dental, and vision plans, designed to fit your needs, including a 100% company-paid HDHP plan for employees.
- Financial perks: We offer a competitive compensation and benefits package including annual bonuses, equity options and 401(k) or RRSP if in Canada, with a company match for all team members.
- Time for what matters: Flexible Time Off, paid holidays, and a parental leave program for our new parents.
- Wellness: Wellness stipends, mental health support, and one-on-one nutrition coaching.
- Learning and Development: Continuous learning through 8am.edu, leadership programs, professional development funds, and individually focused talent development.
- Giving back to the communities around us: Participate in our charitable matching gift program, paid time off for volunteer service, and company-sponsored volunteer events (both local and virtually).
- Engagement: Virtual and in-person team-building events, quarterly award recognition through our Rise & Shine Award of Excellence Program, and our peer-to-peer appreciation platform.
Similar Jobs
Threat Intelligence Analyst
Threat Intelligence Analyst improving cybersecurity by delivering reports and internal briefings. Collaborating with researchers and engineers to enhance threat detection and marketing content.
Cybersecurity Analyst
Cybersecurity Analyst supporting cybersecurity monitoring and response across Microsoft 365 and cloud services. Focused on security event triage and incident response coordination in a structured team environment.
Information Security Analyst II
Information Security Analyst II at CSG overseeing information security protocols and incident responses. Collaborating with teams to mitigate cybersecurity threats and meet regulatory compliance.
Senior Security Analyst
Senior Analyst on the Security Strategy and Assurance team at OutSystems. Driving execution of compliance programs and supporting security certifications in a remote environment.
SAP Application Security Analyst
SAP Application Security Analyst managing security framework and user access in S/4HANA program for federal clients. Collaborating with teams to enhance security compliance and documentation.
Analista de Segurança da Informação – Delinea
Analista de Segurança da Informação supporting the administration of Delinea and managing user access controls. Engaging with IT and security teams to enforce access and security policies.
Cybersecurity Analyst
Cybersecurity Analyst providing technical and strategic advice to VA system owners and developers remotely. Leading security assessments and managing compliance documentation for federal projects.
Senior Information Security Analyst – Access Management
Senior Security Analyst focused on Identity and Access Management at RPE, a leader in retail technology. Responsible for managing access rights and identity solutions ensuring security compliance in cloud environments.
Mid-level Cybersecurity Analyst, Edge Protection, PKI
Technical Analyst managing web security solutions and PKI lifecycle at a leading retail tech company. Responsible for optimizing security measures and responding to incidents efficiently.
SAP Security Analyst
SAP Security Analyst responsible for managing SAP Security design and global support while ensuring compliance and providing production support. Join CHEP for a significant role in enhancing security functionalities.
Senior Cybersecurity Analyst – Governance, Risk, Compliance
Cybersecurity Analyst, Sr. on the Cybersecurity Project Management team at Starbucks. Leading cross-functional programs to strengthen security posture and mitigate risk across the enterprise.
Junior FedRAMP Cybersecurity Analyst
Cybersecurity Analyst assessing and analyzing cybersecurity documentation for client systems. Developing automations and engaging with clients to ensure compliance with standards.
Physical Security Analyst, IV
Physical Security Analyst IV at Hanger, Inc. responsible for global security operations and incident response. Building relationships, managing security budgets, and overseeing contracted services.
Information Security Analyst II
Information Security Analyst II at Southern New Hampshire University responsible for monitoring, detecting, and responding to information security incidents. Join a team committed to protecting critical technology resources.
Security Analyst
Epic Security Analyst helping healthcare organizations solve challenges through strategic improvements. Drive effective IT solutions while managing complex projects and building client relationships.
Cybersecurity Analyst
Cybersecurity Analyst supporting NASA’s enterprise business solutions with knowledge of cybersecurity standards and procedures. Engaging in technical assignments to enhance information security across various platforms.
Cybersecurity Analyst
Cybersecurity Analyst monitoring network traffic and responding to security incidents at Porter. Ensuring compliance with industry standards and implementing security measures.
Compliance & Security Analyst
Compliance & Security Analyst overseeing security posture via System Security Plans and formal policies. Collaborating with IT teams for remediation and incident response preparedness.
Cybersecurity Threat Intelligence Analyst
Cybersecurity Threat Intelligence Analyst at Vantor collaborating with threat analysts to identify and understand cybersecurity threats in diverse environments.
Senior Cybersecurity Analyst
Senior Cybersecurity Analyst managing compliance programs and risks for AI-driven healthcare solutions at Rad AI. Collaborating with various teams and driving security initiatives in a remote-first environment.