Security Engineer
Apex Systems, New York, NY, United States
Role Summary
The Security Engineer is a 1-year contract role, focusing on the secure configuration, deployment, and automation of next-generation GenAI developer tools and Model Hosting platforms. This role requires a strong focus on implementing and enforcing security guardrails and establishing robust security monitoring and response workflows.
Key Responsibilities and Scope
•
GenAI Tool Configuration and Guardrails:
• Develop and maintain a quickly updatable
Jamf Configuration
to distribute configurations, guardrails, and any local observability tooling across developer environments.
•
Response Automation and Workflow Development:
• Create and test automated response playbooks within
N8N
for AI workloads, specifically targeting alerts from
ModelArmor
, Gateway tools, and productionized endpoint detections (
MCP
).
• Take on maintenance and refinement of the
N8N
deployment following handover from the DevOps team.
•
Centralized Model Hosting Security:
• Develop
Terraform templates
for managing and cleaning up GCP project permissions (
VertexAI/Model Armor
platform).
• Develop a continuous validation and backtesting workflow for the
VertexAI/Model Armor
platform, including testing with various file types (PDF, CSV) and addressing current limitations (e.g., file size limits, prompt injection in PDFs, proxy requirements).
• Implement and tune security logging, alerting, and response mechanisms for
Snowflake Cortex
, integrating them with
N8N
or other workflow tools.
Required Tools and Experience
This role requires specific experience to ensure seamless integration and collaboration with partner teams:
•
Configuration Management & Deployment:
• Expertise in
Jamf
for distributing and enforcing configuration profiles and guardrails.
• Experience with security configuration for
Claude Code
,
Cursor
, and
Github Copilot
(especially in agent mode).
• Knowledge of configuration settings for agentic IDEs.
•
Cloud Infrastructure and Automation (Interfacing with DevOps):
• Strong proficiency in
Terraform
to manage and deploy infrastructure components in
GCP
.
• Familiarity with cloud networking/security components like ALB and WAF (as this is a dependency for N8N).
• Experience with containerization platforms like
Fargate
and version control with
Git
.
•
Security Automation and Orchestration:
• Direct experience with
N8N
(or similar workflow automation platforms) to build out response playbooks.
• Familiarity with security tools and concepts common to
InfoSec
(SIEM configuration, Cloud Security, Network and Endpoint security tooling such as
Crowdstrike
and
ZScaler
).
•
AI/ML Platform Security:
• Experience securing and monitoring
Vertex AI
and
Snowflake Cortex
.
• Experience with model security tools like
ModelArmor
.
• Familiarity with integration or support for third-party models, such as
Anthropic
models.
• Understanding of security testing methodologies for LLMs (e.g., prompt injection, file-based threats).
Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details.
Everforth Apex Benefits Overview:
Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.
The Security Engineer is a 1-year contract role, focusing on the secure configuration, deployment, and automation of next-generation GenAI developer tools and Model Hosting platforms. This role requires a strong focus on implementing and enforcing security guardrails and establishing robust security monitoring and response workflows.
Key Responsibilities and Scope
•
GenAI Tool Configuration and Guardrails:
• Develop and maintain a quickly updatable
Jamf Configuration
to distribute configurations, guardrails, and any local observability tooling across developer environments.
•
Response Automation and Workflow Development:
• Create and test automated response playbooks within
N8N
for AI workloads, specifically targeting alerts from
ModelArmor
, Gateway tools, and productionized endpoint detections (
MCP
).
• Take on maintenance and refinement of the
N8N
deployment following handover from the DevOps team.
•
Centralized Model Hosting Security:
• Develop
Terraform templates
for managing and cleaning up GCP project permissions (
VertexAI/Model Armor
platform).
• Develop a continuous validation and backtesting workflow for the
VertexAI/Model Armor
platform, including testing with various file types (PDF, CSV) and addressing current limitations (e.g., file size limits, prompt injection in PDFs, proxy requirements).
• Implement and tune security logging, alerting, and response mechanisms for
Snowflake Cortex
, integrating them with
N8N
or other workflow tools.
Required Tools and Experience
This role requires specific experience to ensure seamless integration and collaboration with partner teams:
•
Configuration Management & Deployment:
• Expertise in
Jamf
for distributing and enforcing configuration profiles and guardrails.
• Experience with security configuration for
Claude Code
,
Cursor
, and
Github Copilot
(especially in agent mode).
• Knowledge of configuration settings for agentic IDEs.
•
Cloud Infrastructure and Automation (Interfacing with DevOps):
• Strong proficiency in
Terraform
to manage and deploy infrastructure components in
GCP
.
• Familiarity with cloud networking/security components like ALB and WAF (as this is a dependency for N8N).
• Experience with containerization platforms like
Fargate
and version control with
Git
.
•
Security Automation and Orchestration:
• Direct experience with
N8N
(or similar workflow automation platforms) to build out response playbooks.
• Familiarity with security tools and concepts common to
InfoSec
(SIEM configuration, Cloud Security, Network and Endpoint security tooling such as
Crowdstrike
and
ZScaler
).
•
AI/ML Platform Security:
• Experience securing and monitoring
Vertex AI
and
Snowflake Cortex
.
• Experience with model security tools like
ModelArmor
.
• Familiarity with integration or support for third-party models, such as
Anthropic
models.
• Understanding of security testing methodologies for LLMs (e.g., prompt injection, file-based threats).
Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details.
Everforth Apex Benefits Overview:
Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.