Director, AI/ML Penetration Testing

Description

NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance. We help secure the most trusted brands on Earth with our Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS) solutions. Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI brings a proactive approach to cybersecurity with more clarity, speed, and scale than ever before.

NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers .

We are seeking a dynamic and experienced AI Service Line Leader to join our team. This role will be pivotal in leading our AI security initiatives, developing cutting-edge solutions, and driving innovation in offensive cybersecurity practices for AI systems.

Key Responsibilities

• Leadership & Development: Lead, mentor, and develop a team of expert security engineers, fostering a culture of continuous improvement and innovation.
• Strategic Partnership: Collaborate with NetSPI service leadership and other key stakeholders to deliver comprehensive penetration tests and security assessments.
• Vulnerability Discovery: Oversee and participate in service delivery, identifying and exploiting vulnerabilities in AI systems using real-world adversarial tactics and techniques.
• Tool Development: Create and enhance tools and techniques to scale and accelerate offensive emulation and vulnerability discovery specific to AI systems.
• Research & Innovation: Conduct research on new and emerging threats, including prompt injection and other AI-specific vulnerabilities, to stay ahead of industry trends and enhance red teaming efficacy.
• Operational Excellence: Develop, operationalize, and maintain advanced penetration testing procedures and methodologies. Ensure high-quality documentation, including papers and presentations, to communicate findings and recommendations.
• Cross-Team Collaboration: Work closely with other offensive security personnel to leverage the latest trends and best practices, ensuring comprehensive security coverage.
  
  
  

Requirements

• Bachelor’s degree in computer science or related technical field, or equivalent work experience.
• 6+ years of technical management experience, including leading a security team.
• 10+ years of experience in identifying security vulnerabilities, understanding the software development lifecycle, and large-scale computing.
• Proficiency in coding languages such as Python, PowerShell, Java, Perl, or similar.
• In-depth knowledge of machine learning principles and AI systems.
• Hands-on experience with common penetration testing tools (e.g., Kali Linux, Burpsuite, Nmap, Nessus).
• Experience with scripting/programming skills and understanding of AI/ML principles, including bias, discrimination, and other safety issues.
• Strong knowledge of cybersecurity and anomaly detection.
• Proven ability to perform complex penetration testing and red team operations.
• Strong verbal and written communication skills, capable of articulating complex security concepts to both technical and non-technical audiences.
• Ability to work independently and lead a team, managing multiple projects and stakeholders effectively.
• Experience in producing high-quality technical documentation and presentations.
• Familiarity with the latest trends in offensive security, specifically related to AI and machine learning systems.
  
  
  

About the Organization NetSPI is the proactive security solution used to discover, prioritize, and remediate security vulnerabilities of the highest importance, so businesses can protect what matters most.

Leveraging a unique combination of dedicated security experts, intelligent process, and advanced technology, NetSPI helps security teams take a proactive approach to cybersecurity with more clarity, speed, and scale than ever before.

By continually advancing solutions such as Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), and Breach and Attack Simulation (BAS), NetSPI goes beyond the noise to deliver high impact results and recommendations based on business needs, so customers can protect their priorities, perform better, and innovate with confidence.

NetSPI secures the most trusted brands on Earth, including nine of the top 10 U.S. banks, four of the top five leading cloud providers, three of the five largest healthcare companies, four MAMAA companies, seven of the top 10 U.S. retailers & e-commerce companies, and many of the Fortune 500.

EOE Statement We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.