Job Description

What you get to do in this role:

This role requires a blend of deep research, secure systems design, and hands-on prototyping. You will pioneer new approaches to secure the AI development lifecycle, create systems that govern how agents interact safely with tools and APIs, and build solutions that bake security into the fabric of our agentic platforms. Your work will be critical in shaping our long-term AI security roadmap and establishing new standards for the industry.

What you’ll do:

• Design and build defences that secure our Agentic AI ecosystem, our LLMs, and our cutting-edge AI models.
• Proactively identify and mitigate risks in this emerging domain by creating foundational security solutions.
• Focus on developing scalable, secure-by-design frameworks that empower developers to build trustworthy applications.
• Continuously drive and implement cutting-edge security in agentic ai, and LLM use througout the company while converting these insights into production-grade controls and services deployed across the ServiceNow platform.

Qualifications

To be successful in this role, you have:

• A B.Sc degree or M.Sc in Computer Science, or a related technical field, with a specialisation in Security or AI/ML.
• 4 years of experience with security assessments, design reviews or threat modelling.
• 4 years of experience in security engineering, computer and network security and security protocols.
• 5 years of programming experience in Java or Python,
• Hands-on experience with agentic AI frameworks (e.g., LangChain, LangGraph).
• A proactive and collaborative mindset, with a passion for continuous learning and a drive to solve complex challenges as part of a team.
• (Bonus) Expertise in AI/ML security, including model and infrastructure vulnerabilities and their mitigation strategies.
• (Strong Bonus) Deep understanding of Large Language Models (LLMs), Multimodal Language Models (MLLMs), and agentic workflows
• (Strong Bonus) Experience developing or evaluating security controls for agentic AI systems, including identity and consent models for multi-party protocols (e.g., MCP, A2A).
• (Strong Bonus) Proficiency in implementing secure communication protocols for agent-to-agent interactions, such as OAuth 2.0, API keys, and PKCE.