Senior Security Engineer
C3 AI (NYSE: AI), is the Enterprise AI application software company. C3 AI delivers a family of fully integrated products including the C3 Agentic AI Platform, an end-to-end platform for developing, deploying, and operating enterprise AI applications, C3 AI applications, a portfolio of industry-specific SaaS enterprise AI applications that enable the digital transformation of organizations globally, and C3 Generative AI, a suite of domain-specific generative AI offerings for the enterprise. Learn more at: C3 AI
We are seeking a highly skilled and experienced Senior Security Specialist to join our team in Guadalajara, Mexico. The ideal candidate will be responsible for discovering and remediating security vulnerabilities, ensuring the security of C3 AI’s platform and applications. This role requires a strong understanding of security and software engineering, as well as hands-on experience with various security tools and practices.
Responsibilities:
- Discover and remediate security vulnerabilities in our systems and applications.
- Conduct security assessments and scans on C3 AI’s platform and applications.
- Utilize DAST (Dynamic Application Security Testing), SAST (Static Application Security Testing), and SCA (Software Composition Analysis) tools to ensure the security of our software.
- File and manage CVEs (Common Vulnerabilities and Exposures).
- Participate in and manage bug bounty programs to identify and address security issues.
- Collaborate with Product, Engineering, and Operations to implement security best practices and ensure compliance with industry standards.
- Stay up-to-date with the latest security trends, vulnerabilities, and technologies.
- Identify and maintain standards and procedures for secure software development
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or a related field.
- Minimum of 3-5 years of experience in information security or a related field.
- Strong understanding of security principles, practices, and technologies.
- Hands-on experience with DAST, SAST, and SCA tools.
- Experience with CVE filing and management.
- Knowledge of bug bounty programs and penetration testing methodologies.
- Experience with multiple languages such as Java, React, Node JS, and/or Python to perform secure code reviews.
- Excellent problem-solving skills and attention to detail.
- Strong communication and collaboration skills.
- Relevant certifications such as CISSP, CEH, or OSCP are a plus.
Preferred Qualifications:
- Experience with cloud security and securing cloud-based applications.
- Familiarity with regulatory requirements and industry standards such as ISO 27001, SOC 2, and GDPR.
- Experience with security automation and orchestration tools.
C3 AI provides a competitive compensation package and excellent benefits.
C3 AI is proud to be an Equal Opportunity and Affirmative Action Employer. We do not discriminate on the basis of any legally protected characteristics, including disabled and veteran status.
Apply for this job
*
indicates a required field