We are looking for an AI Product Security Engineer to join our team in the Czech Republic (hybrid office set up). As an AI Product Security Engineer, you will contribute to building security into Tricentis AI products end-to-end and participate in product security engagements. You will work as a member of the engineering security team to assess, develop, and advocate for AI security best practices, applying your skills to drive secure innovations within AI engineering. Additionally, the AI Product Security Engineer helps implement product security AI guidelines, research potential vulnerabilities in our AI systems, and collaborates closely with our engineering team to incorporate security into our AI lifecycle.

What you will do:

• Participate in security evaluations of Tricentis Products to assess AI product security maturity. Activities include code reviews, threat modelling, software composition analysis, and software security consulting.

• Perform

• Coordinate security defects tracking and map remediation steps to mitigate vulnerabilities with stakeholders (management), product (PMs, QAs, developers) and security champions

• Review code of your teammates and actively share your security expertise.

• Support developer education in AI security by participating in the internal security community.

• Provide input to product roadmaps from a security perspective.

• Explore and experiment with new AI security technologies, approaches, or patterns.

Requirements:

• 2+ years of hands-on technical experience with AI cybersecurity engineering.

• Understanding of how security programs are built and maintained within a commercial business.

• Ability to contribute to technical security assessments to ensure services follow secure design principles across our product portfolio.

• Working knowledge in product focused environment, preferably software security.

• Experience with threat modelling techniques (like STRIDE or similar).

• BSc in Computer Science, a related discipline, or equivalent work experience.

Nice to have Qualifications:

• Direct experience supporting cloud operational models, including SaaS security architecture, micro services, containers, and Kubernetes.

• It will be great if you educate and learn continuously, certs are great, skills are even better.

• Experience with penetration testing of cloud native applications, web applications and web services is a plus.

• Get your hands-on attitude: you are not afraid to pick up a modern technology/library/pattern and get productive with it quickly if that is needed for the task at hand.

• Knowledge of security/ compliance requirements for industry-standard certifications like SOC2, FIPS or FedRAMP.

• MS in Computer Science, Information Security, or a related discipline.

• Contributions to the security community: research papers, public CVEs, conference talks, open source, etc.

• Experience with Software development, Cloud technologies and CI/CD pipelines security.

Tricentis Core Values:

Knowing what we need to achieve and how to achieve it is important. Tricentis core values define our ways of working and the behaviors we model that create an enjoyable and successful Tricentis life.

Demonstrate Self-Awareness: Own your strengths and limitations.

Finish What We Start: Do what we say we are going to do.

Move Fast: Create momentum and efficiency.

Run Towards Change: Challenge the status quo.

Serve Our Customers & Communities: Create a positive experience with each interaction.

Solve Problems Together: We win or lose as one team.

Think Big & Believe: Set extraordinary goals and believe you can achieve them

About Tricentis:
Tricentis is a software company officially founded in 2007, with primary focus on software quality assurance. Whether exploratory or automated, functional or performance, API or UI, as well as mainframes or custom applications or packaged applications, or cloud-native applications - our comprehensive suite of specialized Continuous Testing tools makes DevOps real by giving our clients the confidence to release on-demand.
Tricentis has more than 1500 employees working in across over 20 global offices in US, EMEA, APAC serving over 2100 customers.

Tricentis is proud to be an equal opportunity workplace. Qualified applicants will receive consideration for employment without regard to race, color, ethnicity, gender, religious affiliation, age, sexual orientation, socioeconomic status, or physical and mental disability and other statuses protected by law.

Global Sanctions Compliance

We comply with all applicable global sanctions and export control laws. Candidates must not be listed on any government restricted party lists (including OFAC SDN List and U.S. Commerce Department restricted lists) and must certify that their employment would not violate any sanctions or export control regulations. Candidates must notify us of any changes to their status during the application process or subsequent employment.