At a Glance
- Tasks: Secure AI initiatives and develop standards for internal apps and workflows.
- Company: Join CloudBees, a leader in secure software delivery and cloud transformation.
- Benefits: Enjoy a hybrid work environment, competitive salary, and opportunities for professional growth.
- Other info: Collaborative culture with a focus on diversity and inclusion.
- Why this job: Make a real impact on enterprise security in the exciting AI landscape.
- Qualifications: Experience in software security, secure SDLC, and coding skills in Python or similar.
The predicted salary is between 60000 - 80000 £ per year.
Hybrid Remote • United Kingdom / Ireland
About CloudBees
CloudBees enables enterprises to deliver scalable, compliant, and secure software, empowering developers to do their best work. Seamlessly integrating into any hybrid and heterogeneous environment, CloudBees is more than a tool—it's a strategic partner in your cloud transformation journey, ensuring security, compliance, and operational efficiency while enhancing the developer experience across your entire software development lifecycle.
About the Role
We're looking for a motivated engineer to help secure the most critical AI initiatives across the business. Most application security engineers spend their careers on the product side. This role puts you on the other side: AI-era security for the business itself, not the product customers use. You'll work alongside the CISO on problems most companies don't have a playbook for yet. The work is product security with an enterprise scope.
What You'll Do
- Secure Development Standards
- Develop secure SDLC standards for internal apps and AI workflows
- Build patterns, reference architectures, and the documentation teams need to self-serve
- Work with business teams to raise the profile of security and adopt secure practices, especially for AI and low-code
- Threat modeling and risk assessment
- Conduct threat modeling, risk assessments, and technical security reviews for enterprise systems, internal apps, and AI and agentic deployments
- Identify and prioritize security risks; advise risk, compliance, audit, and business teams on mitigations
- Translate findings into actionable enterprise controls and detection requirements
- AI and agentic security
- Design safeguards for enterprise AI tooling, including agents and non-human identities
- Evaluate and integrate emerging AI/ML security tools
- Stay current with the AI security landscape
- Building and automation
- Engineer and automate AI-first security workflows that scale the wider Security team
- Build for the enterprise domain in a way that benefits Product Security, SOC, and GRC
What You Bring
- Security expertise
- Hands-on experience in software and enterprise security
- Desirable: working knowledge in any of SaaS, cloud, IAM, or endpoint security
- Secure SDLC
- Proficiency in secure SDLC fundamentals, including threat modelling, secure design, vulnerability management, and CI/CD security
- Engineering and tooling
- Comfortable writing and reviewing code (Python, Go, TypeScript, or similar)
- Experience building integrations and automating security workflows
- Experience with security tools at scale — SAST, DAST, SIEM, endpoint, cloud, identity, AI/ML, vulnerability management platforms
- AI and agentic security knowledge
- Understanding of AI/ML security risks, attack vectors, and vulnerabilities
- Familiarity with agentic AI frameworks and generative AI tools
- Communication and interpersonal skills
- Exceptional written and verbal communication; able to translate complex security concepts for any audience
- Strong interpersonal skills; build trust and credibility quickly across technical and non-technical teams
- Drive outcomes through collaboration
- Mindset
- Self-starter with initiative and ownership
- Hacker mindset — figures out the problem, then solves it
- Thrives in ambiguity
Working Conditions
Hybrid - Full time. Travel required. Adjustments will be considered to accommodate individual needs in line with applicable equality and disability legislation.
Equal Opportunity Statement
CloudBees is committed to providing equal opportunities in employment. We value diversity and inclusion and make decisions based on skills, qualifications, and experience. We do not discriminate on the basis of age, disability, gender identity, marital or civil status, pregnancy, maternity, race, religion or belief, sex, or sexual orientation, in accordance with applicable laws.
Data Protection Statement
All personal data collected during the recruitment process will be processed in line with CloudBees’s Privacy Policy and applicable data protection legislation, including the EU General Data Protection Regulation (GDPR).
Disclaimer
This job description provides an overview of the role and key responsibilities. It is not an exhaustive list, and responsibilities may evolve in line with business needs.
Enterprise Security Engineer (AI & Enterprise Security) employer: CloudBees
CloudBees is an exceptional employer that fosters a dynamic and inclusive work culture, empowering employees to excel in their roles while contributing to cutting-edge AI and enterprise security initiatives. With a strong commitment to professional growth, CloudBees offers ample opportunities for skill development and collaboration with industry leaders, all within a hybrid work environment that promotes flexibility and work-life balance. Join us to tackle meaningful challenges and be part of a team that values innovation and diversity.
StudySmarter Expert Advice🤫
We think this is how you could land Enterprise Security Engineer (AI & Enterprise Security)
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Prepare for those interviews by practising common questions and scenarios related to enterprise security. Get comfortable discussing your experience with secure SDLC and threat modelling—this is your chance to shine!
✨Tip Number 3
Show off your skills! If you’ve built any tools or automated workflows, be ready to share them during interviews. Having tangible examples of your work can really set you apart from the competition.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at CloudBees.
We think you need these skills to ace Enterprise Security Engineer (AI & Enterprise Security)
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter for the Enterprise Security Engineer role. Highlight your experience in secure SDLC, threat modelling, and any relevant AI security knowledge. We want to see how your skills align with what we're looking for!
Show Off Your Skills:Don’t just list your qualifications—give us examples! If you've built security workflows or automated processes, share those experiences. We love seeing hands-on experience that demonstrates your problem-solving abilities.
Be Clear and Concise:When writing your application, keep it straightforward. Use clear language and avoid jargon unless it's relevant. We appreciate a well-structured application that gets straight to the point—show us what you can do without fluff!
Apply Through Our Website:We encourage you to submit your application through our website. It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it’s super easy—just follow the prompts and you’re good to go!
How to prepare for a job interview at CloudBees
✨Know Your Stuff
Make sure you brush up on your knowledge of secure SDLC fundamentals, threat modelling, and AI security risks. Be ready to discuss how you've applied these concepts in previous roles, as this will show your hands-on experience and expertise.
✨Show Your Problem-Solving Skills
Prepare to share examples of how you've tackled complex security challenges in the past. This role is all about figuring out problems that don’t have a playbook, so demonstrating your proactive approach and hacker mindset will really impress the interviewers.
✨Communicate Clearly
Practice explaining complex security concepts in simple terms. You’ll need to build trust with both technical and non-technical teams, so being able to communicate effectively is key. Think of scenarios where you’ve successfully collaborated across different departments.
✨Be Curious and Engaged
Show your enthusiasm for the role by asking insightful questions about the company’s AI initiatives and security practices. This not only demonstrates your interest but also your understanding of the importance of security in the enterprise landscape.
