.jpg?1700169058){kind=logo}
About the company
Zscaler (NASDAQ: ZS) accelerates digital transformation so that customers can be more agile, efficient, resilient, and secure. The Zscaler Zero Trust Exchange is the company’s cloud-native platform that protects thousands of customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location. With more than 10 years of experience developing, operating, and scaling the cloud, Zscaler serves thousands of enterprise customers around the world, including 450 of the Forbes Global 2000 organizations. In addition to protecting customers from damaging threats, such as ransomware and data exfiltration, it helps them slash costs, reduce complexity, and improve the user experience by eliminating stacks of latency-creating gateway appliances. Zscaler was founded in 2007 with a mission to make the cloud a safe place to do business and a more enjoyable experience for enterprise users. Zscaler’s purpose-built security platform puts a company’s defenses and controls where the connections occur—the internet—so that every connection is fast and secure, no matter how or where users connect or where their applications and workloads reside.
Job Summary
We are looking for an experienced Principal Information Security Engineer to join our Product Security Team. Reporting to the Sr. Director, Information Security, you’ll be responsible for
📍Leading the design and implementation of secure architectures for AI/ML components and features integrated into Zscaler's cloud security products 📍Developing a strategic roadmap for AI/ML product security, aligning with Zscaler's product vision, business objectives, and the evolving threat landscape 📍Conducting specialized threat modelling exercises for new and existing AI/ML product features and models, identifying unique vulnerabilities such as adversarial attacks, data poisoning, model inversion, prompt injection, and bias that could impact product efficacy or customer data 📍Perform comprehensive security risk assessments of AI/ML product initiatives,providing actionable recommendations and driving their remediation within product development cycles 📍Collaborate closely with AI/ML engineers, data scientists, product management, and other architecture teams to embed security requirements and controls throughout the AI/ML product development lifecycle (SDLC/MLOps)
What We’re Looking For (Minimum Qualifications):
📍10+ years of progressive experience in Information Security, with at least 5+ years in a dedicated Security Architecture role, preferably in a cloud-native product environment 📍3+ years of direct experience securing AI/ML systems, models, and data within commercial software products or large-scale SaaS offerings, with a deep understanding of AI/ML specific threat vectors 📍Proven expertise in designing and securing large-scale, distributed systems on public cloud platforms (AWS, Azure, GCP) as part of a product engineering lifecycle 📍Strong understanding of AI/ML fundamentals, algorithms, model development lifecycles, and MLOps principles as applied in a product development context 📍Hands-on experience with threat modeling methodologies (e.g., STRIDE, MITRE ATLAS for ML) applied to product features
Looking for your next challenge? The world of crypto offers exciting roles in blockchain development, web3 innovations, and remote opportunities.
