AI Security Operation Engineer

Overview
We are seeking an AI Security Operations Engineer to join the Cybersecurity organization, reporting to the Senior Manager, Cyber Security. This role focuses on the secure operation, monitoring, and continuous improvement of enterprise AI platforms and AI security tooling, with primary responsibility for Palo Alto Prisma AIRS.
The AI Operations Engineer partners closely with security architecture, cloud, engineering, and business teams to enable safe and scalable AI adoption across the enterprise. The ideal candidate is experimentation-driven, operationally disciplined, and effective at translating AI security requirements into actionable remediation and measurable outcomes.

Key Responsibilities

• Lead the onboarding and integration of AI platforms, AI-enabled SaaS applications, and automation workflows into Palo Alto Prisma AIRS, ensuring comprehensive visibility and coverage. Configure, tune, and maintain Prisma AIRS policies and detections to maximize signal quality and reduce false positives.
• Continuously monitor AI runtime activity and security posture, identifying risks related to data access, agent behavior, misconfigurations, and policy violations.
  Support AI-enabled platforms and services across AWS and Google Cloud Platform, including Microsoft Copilot, TrueFoundry, n8n, and Glean.
• Partner with engineering, platform, and business teams to remediate AI security findings, providing clear guidance and operational support throughout remediation efforts.
• Track and report remediation status, risk trends, and operational metrics to both technical stakeholders and leadership audiences.
• Develop and maintain AI security operations runbooks, procedures, and response playbooks.
• Define and manage key performance indicators (KPIs) to measure AI security posture, control effectiveness, and remediation progress.
• Assist in triaging and responding to AI-related security events and incidents in coordination with SecOps and Cloud Operations teams.
• Promote secure-by-design and privacy-by-design principles through effective collaboration with AI product, data, and engineering stakeholders. Contribute to continuous improvement of AI operational processes, monitoring strategies, and security tooling.

Top 5 Must Haves

• AWS or Google Cloud Platform Security operations
• Strong collaboration skills and ability to build alignment across cross-functional teams
• Experience automating or scripting operational tasks (Python, PowerShell, Bash). 
• Strong understanding of identity, access control, APIs, logging, and monitoring within cloud and SaaS environments.
• 2+ years of experience operating or supporting AI platforms, AI-enabled SaaS applications, or security monitoring tools

Minimum Qualification:

• 5+ years of experience in security operations, cloud operations, platform operations, or a related field.
• 2+ years of experience operating or supporting AI platforms, AI-enabled SaaS applications, or security monitoring tool.
• Hands-on experience with cloud platforms in AWS and/or Google Cloud Platform.
• Demonstrated experience leading remediation efforts and tracking/reporting progress to technical and leadership stakeholders.
• Strong understanding of identity, access control, APIs, logging, and monitoring within cloud and SaaS environments.
• Excellent verbal and written communication skills, with the ability to explain complex technical issues to diverse audiences.
• Strong collaboration skills and ability to build alignment across cross-functional teams. Proven ability to drive projects and operational tasks to completion in dynamic environments.

Preferred Qualifications:

• Experience operating AI security or runtime monitoring platforms such as Palo Alto Prisma AIRS or similar tools.
• Hands-on experience with one or more of the following: Microsoft Copilot (M365, Copilot Studio) TrueFoundry or similar ML/LLM orchestration platforms n8n or other automation/workflow platforms Glean or enterprise AI search solutions AI services in AWS (e.g., Bedrock-based workloads) or Google Cloud Platform (e.g., Vertex AI) Familiarity with AI/LLM security risks such as prompt injection, data leakage, over-privileged agents, and unintended automation.
• Experience automating or scripting operational tasks (Python, PowerShell, Bash). Background in large enterprise, Fortune 500, or regulated environments.
• Telecom, cable, or large-scale SaaS experience. Relevant industry certifications such as CISSP, CISM, CISA, AWS, Azure, or Google Cloud Platform certifications.