AI Native, Information Security Engineer

We are seeking a Security & IT Engineer who leverages AI-first thinking to reshape how security is designed, scaled, and maintained. This isn’t a traditional security role - we want someone who can harness AI tools, automation, and creative scripting to build intelligent security solutions that scale with our business.

You’ll be our automation architect, using AI to eliminate manual processes and predict threats before they happen. If you’re excited about using generative AI to write detection rules, building generative workflows for incident response, or creating intelligent dashboards that surface insights before they’re requested, this role is for you.

This hybrid position combines forward-leaning security engineering with essential IT operations, making you a key player in our technology infrastructure’s protection and efficiency. In this role, the Information Security Engineer must be knowledgeable about security frameworks and possess both deep and wide expertise in the security space.

What you'll do:

Security Engineering & Automation

• Design and implement AI-powered security workflows that reduce manual intervention and response times (detection, alert triage, compliance reporting, etc.)
• Leverage AI tools (ChatGPT, Claude, etc.) to enhance incident response, threat detection, and compliance operations
• Create intelligent systems for continuous compliance monitoring and reporting using our existing security tools
• Develop and maintain security automation for onboarding/offboarding processes, access controls, and device compliance
• Orchestrate vulnerability management: scanning, triage, remediation and tracking
• Use AI tools to analyze security metrics, identify trends, and generate actionable intelligence
• Manage and optimize our security stack

IT Infrastructure & Ops

• Support cloud security posture in cloud infrastructure and SaaS environments
• Manage corporate identity and access management systems with a security-first approach
• Ensure secure device configuration and lifecycle management
• Provide escalated technical support for infrastructure and endpoint issues
• Ensure secure configuration and monitoring of corporate IT infrastructure
• Act on privacy breaches and malware threats
• Analyze IT specifications to assess security risks
• Collaborate with internal teams to ensure closure of security vulnerabilities

Governance, Risk, and Compliance

• Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement
• Develop and maintain incident response playbooks and procedures
• Lead internal security awareness efforts, from phishing tests to trainings
• Develop and carry out information security plans and policies

Requirements:
Minimum Qualifications & Credentials

• BSc/BA in Computer Science, Information Technology, or a related field
• Professional certification (e.g. CompTIA Security+, CISSP) is a plus
• Demonstrated experience with AI tools and automation platforms

Experience

• Hands-on experience with vulnerability scanners, endpoint protection, and security monitoring tools
• Proven track record automating security and IT workflows using APIs, webhooks, and cloud-native tooling
• Proficiency in Python, Bash, or similar scripting languages for automation
• Strong grasp of network security, endpoint protection, and cloud security
• Experience with endpoint management, user support, and IT infrastructure
• Experience with log analysis and SIEM platforms (experience with budget-conscious solutions a plus)
• Proven work experience as a System Security Engineer or Information Security Engineer

Hard/Technical Skills

• Understanding of OWASP, NIST, CSF, MITRE ATT&CK, and common security frameworks
• Detailed technical knowledge of database and operating system security
• Familiarity with web related technologies (web applications, web services, service oriented architectures) and of network/web-related protocols
• An analytical mind with excellent problem-solving ability
• Excellent written and verbal communication skills for both technical and business audiences
• Decision-making skills and ability to manage multiple initiatives simultaneously with minimal supervision

Benefits:
Why You’ll Love Working Here

At ConsumerAffairs, your voice matters. We foster a collaborative environment where you’re encouraged to take initiative, experiment boldly, and grow professionally. We're committed to work-life harmony, career development, and celebrating wins together.

• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k)
• Life Insurance (Basic, Voluntary & AD&D)
• Paid Time Off (Vacation, Sick & Public Holidays)
• Family Leave (Maternity, Paternity)
• Short Term & Long Term Disability
• Training & Development