Senior Security Engineer

OutSystems OutSystems · Enterprise · Lisbon, Portugal

This role focuses on building and securing AI systems, specifically agentic AI for security workflows, and securing AI systems themselves. The company provides an AI Development Platform for enterprises to build and scale AI solutions.

What you'd actually do

  1. Developing systems that automatically respond and remediate known security vulnerabilities or insecure configurations.
  2. Developing and creating systems that integrate into Security Operation Center and Individual and Account Management Tools.
  3. Reviewing, auditing, and helping assist in writing compliance policies, along with remediating identified compliance gaps.
  4. Agentic AI Experience: Designing and implementing autonomous AI agents for security workflows, understanding agent lifecycle management, integration of AI agents into security operations and incident response.
  5. AI Security & Safety: Expertise in securing AI systems, adversarial testing, prompt injection defense, AI model security, and securing machine learning supply chains.

Skills

Required

  • Go or Python
  • RESTful APIs and cloud service integrations
  • Infrastructure-as-code (IaC) for cloud security: Terraform, CloudFormation, AWS CDK, or ARM templates
  • Cloud security automation, orchestration, and compliance-as-code
  • building security tools and systems for automated cloud misconfiguration detection and remediation
  • Cloud logging, monitoring, and alerting (CloudWatch, Azure Monitor, CloudTrail)
  • Agentic AI Experience
  • AI Security & Safety
  • securing AI systems
  • adversarial testing
  • prompt injection defense
  • AI model security
  • securing machine learning supply chains

Nice to have

  • CKA and CKS preferred
  • securing Cloud Infrastructure and assets in an enterprise level product
  • Security incidents, Security Teams, and Security Researchers
  • AWS Security Services such as GuardDuty and Security Hub; Networking services such as Firewall Manager and Web Application Firewalls; and IAM, Lambda Functions, CloudFormation services preferred
  • Azure security services including Microsoft Defender, Azure Policy, and identity management preferred
  • Cloud cost optimization and security trade-offs
  • cloud-specific compliance frameworks (AWS Well-Architected Framework, Azure Well-Architected Framework, CIS Benchmarks, cloud FedRAMP/HIPAA)
  • Cloud data security and encryption at rest and in transit
  • Multi-cloud and hybrid cloud security architecture
  • mentor and lead junior cloud security engineers
  • Wiz preferred
  • serverless security and function-as-a-service (FaaS) security considerations

What the JD emphasized

  • security posture is established, maintained, and continued throughout the Software Development LifeCycle
  • identify internal infrastructure that is susceptible to known vulnerabilities
  • create solutions and lead programs to remediation of identified vulnerabilities
  • automatically respond and remediate known security vulnerabilities or insecure configurations
  • integrate into Security Operation Center and Individual and Account Management Tools
  • writing compliance policies, along with remediating identified compliance gaps
  • Agentic AI Experience
  • AI Security & Safety
  • securing AI systems
  • adversarial testing
  • prompt injection defense
  • AI model security
  • securing machine learning supply chains

Other signals

  • AI Development Platform
  • build mission-critical apps and agents
  • modernize legacy processes with agentic systems
  • govern their entire AI portfolio
  • combining the speed of generative AI with a deterministic, enterprise-grade framework
  • deliver high-quality, reliable AI solutions
  • empower organizations to build, deploy, and scale the next generation of enterprise software
  • leading the charge into the agentic era
  • accelerating innovation through secure, governed human-AI collaboration