Company Description

Mirantis is the Kubernetes-native AI infrastructure company, enabling organizations to build and operate scalable, secure, and sovereign infrastructure for modern AI, machine learning, and data-intensive applications. By combining open source innovation with deep expertise in Kubernetes orchestration, Mirantis empowers platform engineering teams to deliver composable, production-ready developer platforms across any environment—on-premises, in the cloud, at the edge, or in sovereign data centers. As enterprises navigate the growing complexity of AI-driven workloads, Mirantis delivers the automation, GPU orchestration, and policy-driven control needed to manage infrastructure with confidence and agility. Committed to open standards and freedom from lock-in, Mirantis ensures that customers retain full control of their infrastructure strategy.

https://www.mirantis.com/

Job Description

Mirantis is seeking a Senior AI Security Engineer to help secure and enable our portfolio of products and services, including enterprise software, critical infrastructure, and emerging AI driven capabilities.

As Mirantis expands the use of AI technologies, LLM powered services, intelligent agents, and automation platforms, this role will help guide their secure adoption, architecture, and deployment across our products and internal platforms.

In this role, you will work closely with engineering, product, security operations, and compliance teams to reduce risk while enabling innovation across Mirantis products. You will have the opportunity to shape security strategy, support the adoption of modern AI technologies, and ensure security is embedded into every stage of product development and operations.

Key Responsibilities

Secure Products, Infrastructure & AI Platforms

• Design, implement, and maintain security controls across applications, infrastructure, CI/CD pipelines, and AI enabled services.

• Support engineering teams in the secure deployment and operation of AI capabilities, including LLM integrations, intelligent agents, and AI assisted development tooling.

• Embed security requirements aligned with SOC 2, ISO 27001, and internal standards.

• Drive adoption and operationalization of security tooling including SAST, DAST, container scanning, IaC security, and dependency analysis tooling.

• Integrate automated security testing into the SDLC to enable secure-by-design development.

Technology Adoption & Architecture Guidance

• Partner with engineering and product teams to evaluate and support the adoption of new technologies, including AI platforms, LLM services, and automation frameworks.

• Provide architectural guidance to ensure new systems and integrations meet security, reliability, and scalability requirements.

• Help establish best practices for deploying AI driven services and automation systems within Mirantis infrastructure.

Offensive Security & Vulnerability Management:

• Lead application security reviews, threat modeling, vulnerability assessments, and penetration testing.

• Validate and prioritize findings based on exploitability and business impact.

• Partner with engineering teams to ensure timely, measurable remediation.

• Proactively identify and demonstrate security weaknesses to improve overall product resilience.

• Assess risks associated with AI enabled features, automation systems, and integrations with external services.

Incident Response & Risk Reduction:

• Support investigation of product and infrastructure security incidents.

• Contribute to root cause analysis and durable remediation strategies.

• Identify systemic control gaps and implement long-term risk mitigation measures.

• Assist in evaluating risks associated with automated systems, AI integrations, and emerging technologies adopted across Mirantis products.

Compliance & Assurance:

• Support product level security reviews and audit activities.

• Coordinate evidence collection and control validation for SOC 2, ISO 27001, and enterprise requirements.

• Translate compliance requirements into actionable engineering controls.

• Ensure that new technologies and AI enabled capabilities align with enterprise security and governance standards.

Cross-Product Security Leadership:

• Develop and maintain security expertise across multiple Mirantis products.

• Standardize security practices and tooling across teams.

• Strengthen program scalability and reduce single-point-of-failure risk.

• Contribute to the development of secure architecture patterns and technology standards for products and platforms across Mirantis.

Security Advocacy & Enablement:

• Champion secure design principles and modern application security practices.

• Provide actionable guidance during architecture and code reviews.

• Drive continuous improvement and automation across the SDLC.

• Support engineering teams adopting AI tools, LLM services, and modern development platforms, ensuring they are deployed securely and responsibly.

Qualifications

• 5+ years of experience in product security, application security, or security engineering.

• Strong knowledge of common vulnerabilities (OWASP Top 10, SANS Top 25) and secure development practices.

• Demonstrated experience with manual penetration testing, threat modeling, and exploitation techniques.

• Familiarity with AI technologies, LLM services, or intelligent automation platforms is a plus.

• Hands-on experience with security tooling and automation, including:

  • SAST / DAST tooling and CI/CD integration

  • Container image scanning (e.g., Trivy, Grype, Anchore)

  • IaC security (e.g., Terraform, Helm, KICS, Checkov)

  • Dependency and software supply chain security tools

• Experience with vulnerability management platforms and remediation workflows.

• Experience working with containerized environments, Kubernetes, and cloud platforms.

• Proven ability to integrate and automate security controls within CI/CD pipelines.

• Strong collaboration and communication skills across engineering and product teams.
  Experience supporting SOC 2, ISO 27001, or similar compliance frameworks.

• Relevant certifications (OSCP, OSEP, OSWE, GPEN, GWEB, GWAPT, GCSA) strongly preferred.

• Proficiency in scripting or programming (Go, Python, or similar) is a plus.

Additional Information

What does Mirantis offer you?

• Work with an established Silicon Valley leader in the cloud infrastructure industry.

• Work with exceptionally passionate, talented and engaging colleagues, helping Fortune 500 and Global 2000 customers implement next-generation cloud technologies.

• Be a part of cutting-edge, open-source innovation.

• Thrive in the high-energy environment of a young company where openness, collaboration, risk-taking, and continuous growth are valued.

• Receive a competitive compensation package with strong benefits plan

We are a Leader for Container Management in G2 (#2 after AWS)!