Principal / Staff Security Engineer - AI Platform & DevSecOps

About the role

AiDASH protects the critical infrastructure that delivers power to tens of millions of people. We are SOC 2 Type II certified today, and we're working toward ISO 27001 and ISO 42001 certifications in 2027. As we embed GenAI more deeply into our SaaS products (RAG pipelines, agentic / MCP services) and roll out AI-assisted development internally, the threat landscape is shifting fast. Autonomous adversaries, Mythos-class threat actors, prompt injection, model exfiltration, and vibe-coded internal apps spun up by non-engineers are now part of the daily attack surface. We're hiring a Principal or Staff Security Engineer to be our deepest technical voice on security - covering DevSecOps, AI/LLM security, cloud and endpoint defense, IT-Security, and the governance work that will land us ISO 27001 and 42001 certifications in 2027. You'll architect the strategy, pick the right tools where gaps exist, run the audits, and grow the function. You will report to senior leadership and partner with platform, ML, DevOps, and IT leadership across the company. If you've been waiting for a chance to lead the security program at a Series C AI company that ships production AI to critical infrastructure operators, this is that role. The Team You'll partner with our existing security and compliance team based in India - a security engineer plus two compliance specialists, currently within the DevOps organization - and serve as the most senior security IC at AiDASH and the company's authority on AI/LLM security. This role represents the next phase of our security investment: bringing senior-IC depth, AI-native security leadership, and modern detection engineering to a program that has so far been operated alongside DevOps. How you'll make an impact: DevSecOps & AppSec Operate and mature our AppSec toolchain across CI/CD - SAST, DAST, SCA, secrets scanning, and IaC policy-as-code. Deepen coverage and evaluate additional tooling where gaps are real Run threat modeling and secure-design reviews; champion shift-left so security is part of every PR, not a gate at the end Operate the AIBOM / SBOM toolchain; enforce risk-tiered dependency controls and extend SLSA practices to model artifacts AI & LLM Security Harden production GenAI deployments on AWS (managed model APIs, agentic / MCP services) - IAM, VPC routing, prompt-layer guardrails, output filtering, rate/cost controls Codify OWASP LLM Top 10 and MITRE ATLAS controls into the SDLC; introduce LLM eval-as-gate in CI Govern internal AI-assisted developer tooling - DLP for what egresses to external model providers, sensitive-data discovery in prompts, and acceptable-use telemetry Stand up controls for vibe-coded apps and shadow AI: discover, classify, gate with sane defaults, and bring under the SDLC ISO 27001 / 42001 & Security Governance Lead the company's path to ISO 27001 and ISO 42001 (AI Management System) certifications in 2027 - scope the management systems, run gap assessments, build the control sets, and steer the audit cycles Maintain our SOC 2 Type II posture; manage the evidence pipeline, control mappings, and external auditor relationships Maintain alignment with the NIST AI RMF and translate emerging AI regulation (EU AI Act, US state AI laws, utility-sector mandates) into concrete engineering requirements Cloud, Endpoint & IT-Security Operate our endpoint, cloud, identity, and SIEM platforms end-to-end. Own detection engineering, tuning, and integration with the rest of the stack Harden AWS posture across accounts (Organizations, SCPs, Control Tower); mature Kubernetes security (admission controllers, runtime visibility, pragmatic hardening) Stand up zero-trust p

Benefits

Additional Information

About AiDASH AiDASH is an enterprise AI company and the leading provider of vegetation risk intelligence for electric utilities. Powered by proprietary VegetationAI™ technology, AiDASH delivers a unified remote grid inspection and monitoring platform that uses a SatelliteFirst approach to identify and address vegetation and other threats to the grid. With a prevention-first strategy to mitigate wildfire risk and minimize storm impacts, AiDASH helps more than 140 utilities reduce costs, improve reliability, and lower liability across their networks. AiDASH exists to safeguard critical utility infrastructure and secure the future of humanAIty™. Learn more at www.aidash.com. We are a Series C growth company backed by leading investors, including Shell Ventures, National Grid Partners, G2 Venture Partners, Duke Energy, Edison International, Lightrock, Marubeni, among others. We have been recognized by Forbes two years in a row as one of "America's Best Startup Employers." We are also proud to be one of the few software companies in Time Magazine's "America's Top GreenTech Companies 2024". Deloitte Technology Fast 500 ™ recently ranked us at No. 12 among San Francisco Bay Area companies, and No. 59 overall in their selection of the top 500 for 2024. Join us in Securing Tomorrow!

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at aidashinc? Share your experience