Senior Security Engineer, AI Infrastructure

Benefits

Additional Information

Company Overview ImmunityBio, Inc. (NASDAQ: IBRX) is a commercial-stage biotechnology company developing cell and immunotherapy products that are designed to help strengthen each patient's natural immune system, potentially enabling it to outsmart the disease and eliminate cancerous or infected cells. We envision a day when we no longer fear cancer, but can conquer it, thanks to the biological wonder that is the human immune system. Our scientists are working to develop novel therapies that harness that inherent power by amplifying both branches of the immune system, attacking cancerous or infected cells today while building immunological memory for tomorrow. The goal: to reprogram the patient's immune system and treat the host rather than just the disease. Why ImmunityBio? - ImmunityBio is developing cutting-edge technology with the goal to transform the lives of patients with cancer and develop next-generation therapies and vaccines that complement, harness and amplify the immune system to defeat cancers and infectious diseases. - Opportunity to join a publicly traded biopharmaceutical company with headquarters in Southern California. - Work with a collaborative team with the ability to work across different areas of the company. - Ability to join a growing company with professional development opportunities. Position Summary The Senior Security Engineer- AI Infrastructure is a systems-level role integrating security engineering, identity management, and infrastructure hardening across AI and agentic platforms. The role involves close interaction with platform, DevOps, site reliability, and AI/ML engineering functions. The Senior AI Infrastructure Security Engineer will serve as the Subject Matter Expert (SME) for securing AI workloads and will work with cross-functional teams to ensure successful implementation of security architecture across the full AI stack - from Kubernetes and cloud services through AI agents and their tools. This role will support senior engineering and security leadership in driving compliance with relevant security and AI governance frameworks, preparing and adhering to project schedules, and providing technical security support for AI platform operations, identity and access control, logging, and runtime protections for models, agents, and data. Essential Functions Serve as Subject Matter Expert for the design, maintenance, and implementation of security architectures for AI infrastructure, including model hosting environments, model registries, feature stores, vector databases, and agent orchestration platforms. Engineer robust Identity and Access Management (IAM) for AI systems, including RBAC/ABAC policies for models, agents, tools, and data stores; secrets management; and key and token lifecycle management (creation, rotation, revocation) for AI services and agents. Define and implement guardrails and isolation strategies for agentic workflows, including sandboxing, least privilege tool access, network segmentation, and blast radius reduction. Build and integrate logging and observability pipelines for AI systems - covering prompts, tool calls, model outputs, agent actions, and data access paths - into existing detection and incident response infrastructure. Conduct risk assessments and threat modeling for AI platforms and integrations, including supply chain risks around models, datasets, and third-party AI services. Partner with DevOps and Platform Engineering teams to embed AI security controls into CI/CD pipelines and infrastructure-as-code, including secure deployment patterns, policy-as-code for AI resources, and pre-production security checks. Lead and participate in AI-related incident response and forensics, including investigations into model misuse, compromised agents, or suspicious data flows. Consult and collaborate with SMEs across Security, Platform Engineering, Data Science, Compliance, and Legal to ensure alignment of security controls with business and regulatory requirements. Ensure compliance with relevant security and AI governance frameworks and regulations - including NIST CSF, NIST RMF, NIST AI RMF, ISO 27001, SOC 2 Type 2, and applicable data protection regulations - by delivering technical controls and audit-ready evidence. Lead creation, modification, and maintenance of security documentation, including architecture decision records, threat models, runbooks, and SOPs, maintained in a compliant and audit-ready state. Provide technical mentoring and oversight to less experienced engineers responding to and troubleshooting AI platform security issues. Perform ad-hoc and cross-functional projects assigned to support business needs and provide developmental opportunities. Education & Experience Bachelor's degree in Computer Science, Information Security, Engineering, or a related field with 7+ years of relevant experience is required. 5+ years of experience in security engineering, cloud security, or platform security is required. 3+ years of hands-o