Enterprise AI Security Lead

Join GitLab as a Senior Security Engineer, leading the design and implementation of robust security frameworks for internal AI and ML systems. This remote role is vital to ensuring responsible AI adoption, protecting intellectual property, and mitigating AI-specific security threats across our global workforce.

Key Responsibilities

• Design and implement comprehensive AI security architecture for internal systems, including LLMs and AI-powered applications.
• Monitor and secure Model Context Protocol (MCP) deployments, establishing authentication and activity monitoring standards.
• Architect and manage identity governance for non-human entities such as AI agents and service accounts, enforcing zero-trust and least-privilege principles.
• Secure employee use of AI assistants through DLP controls, monitoring, and policy enforcement to protect confidential data.
• Collaborate with Product, IT, Legal, and other teams to drive secure AI adoption, training, and procurement evaluations.

Required Skills & Qualifications

• 5+ years of information security experience, with 2+ years focused on enterprise AI/ML security.
• Expertise in enterprise AI adoption, shadow IT risk management, and data loss prevention strategies.
• Strong background in identity and access management, especially for non-human identities and automated systems.
• Proficiency in cloud security (AWS, GCP, Azure) and scripting languages (Python, Go, Ruby, Node.js).
• Knowledge of API security, OAuth, SAML, and modern authentication protocols.
• Excellent communication skills for a transparent and global remote environment.
• Preferred: Experience with MCP, enterprise AI platforms, browser/endpoint security, and published contributions to AI security communities.