FreeHire

American Express

Senior Cybersecurity Engineer I

Show

The Enterprise Technology Services organization partners with every part of the American Express business to power the company’s growth and innovation with trust and efficiency, and drive competitive differentiation with speed. We support the delivery and operations of technology, digital, and data capabilities, platforms, and services globally. Specifically, our team is responsible for the company’s technology engineering, architecture, and infrastructure, providing 24x7 support to ensure an uninterrupted, high-quality experience for customers and colleagues. We also provide product management for core enterprise platforms, and lead technology risk and information security, enterprise data governance and platforms, digital product and design, and enterprise AI platforms on behalf of the company.

American Express is seeking Senior Engineer-Agentic AI with proven strong technical competence and leadership capability to contribute towards the success of enterprise-wide Security initiatives. Senior Engineer-Agentic AI serves as a subject matter expert in Generative AI, automates integrations and plays an integral role in managing, monitoring & reporting on Generative AI, Agentic AI security risk reduction. Generative AI supports the security champion practice by evangelizing security principles and controls.

  • Design and implementation of autonomous and semi-autonomous agents.
  • Multi-agent workflow orchestration.
  • Tool integration (APIs, databases, enterprise systems).
  • Memory management and context engineering.
  • Human-in-the-loop workflows and approval patterns.

  • Experience building automation tooling for security or developer efficiency

  • Proficiency in at least one scripting language (Python, JavaScript, or Bash) and familiarity with a compiled language (Go, Rust, or Java)

  • Experience with GitHub automation and API integrations.

  • Strong Experience of CI/CD pipelines and how to integrate security into development workflows.
  • Ability to collaborate effectively across security and engineering teams.
  • Conduct research on emerging threats, vulnerabilities, and technologies to stay updated on the evolving security landscape.

  • Develop and maintain security automation tooling to enhance visibility, enforce security best practices, and streamline processes.

  • Automate secure design reviews and integrate security checks into pull request workflows and CI/CD pipelines.

  • Collaborate with development and security teams to ensure seamless adoption of security automation.

  • Continuously refine automation strategies to optimize security effectiveness and reduce manual overhead.

  • Support on-going vulnerability management efforts to ensure proper attack surface management.

  • Proficiency in Python, with experience building automation tools for security or engineering teams

  • A strong foundation in software engineering principles, including debugging, testing, and system design. An eagerness to learn about AI/ML, with opportunities to explore the intersection of AI and security.

  • Work closely with our Engineering and Data science teams to securely design and implement new features and products.
  • Operate as an integral member of Engineering team and advocate for security best practices across the organization.
  • Strong understanding, experience with OWASP Top10 and industry best practices within Generative AI security.

Security and Technical Experience

  • This role will focus on building internal security tools, automating secure design reviews, and integrating security guidance directly into pull requests.

  • Your work will empower both the security and development teams by reducing friction in the security review process and ensuring best practices are embedded seamlessly into the Software Development Lifecycle (SDLC)

  • Develop and maintain security automation tooling to enhance visibility, enforce security best practices, and streamline processes

  • Experience building automation tooling for security or developer efficiency.

  • Proficiency in at least one scripting language (Python, JavaScript, or Bash) and familiarity with a compiled language (Go, Rust, or Java).

  • Experience with GitHub automation and API integrations.

  • Strong Experience of CI/CD pipelines and how to integrate security into development workflows.

  • Experience performing POC’s regarding security tooling, zero-day vulnerabilities and emerging risks.

  • Familiarity with database architectures: Oracle, SQL and NoSQL Databases.

Desired Skills:

  • Information security professional certifications encouraged, such as SANS GIAC, CISSP, Generative AI certifications.
  • Experience mentoring application security and secure development practices to the team.
  • Master's Degree – Cyber Security, Data Science, Computer Science, or Software Engineering
  • Machine Learning Operation Professional Certifications.
  • Strong knowledge of Adversarial Robustness techniques and tools for machine learning.
  • Strong knowledge of AI Risk Management frameworks and Trustworthy AI practices.

  • Bachelor’s degree in Cybersecurity, Data science, Computer Science or Software Engineering.
  • 10 + years’ experience with Automation and Development in CI/CD.
  • 10+ years of software engineering experience.
  • 5+ Years of Cybersecurity.
  • 2+ years of Generative AI experience.