CyberSecurity AI Engineer

Nelnet is a diversified and innovative company committed to enriching lives through the power of service as a student loan servicer, professional services company, consumer loan originator and servicer, payments processor, renewable energy solutions, and K-12 and higher education expert. For over 40 years, Nelnet has been serving its customers, associates, and communities. The perks of working at Nelnet go beyond our benefits package. When you join the Nelnet team, you're part of a community invested in the success of each individual. That support comes through in our work, as we are united by our mission of creating opportunities for people where they live, learn, and work. The Cybersecurity AI Engineer at Nelnet plays a critical role in securing the organization's AI/ML infrastructure and applications. This position works at the intersection of cybersecurity, artificial intelligence, and operations, focusing on protecting machine learning models, LLMs, data pipelines, and associated services from evolving threats. The ideal candidate combines expertise in security engineering with a deep understanding of AI technologies, and partners across IT, security, and data science teams to implement resilient, compliant, and secure AI solutions. This role requires strong technical acumen, practical problem-solving, and a forward-thinking mindset to defend next-generation AI systems. You will: - Monitor, evaluate, and enhance the security posture of AI/ML systems, APIs, and model-serving environments. - Implement detection mechanisms to identify adversarial AI threats such as model abuse, prompt injection, data poisoning, and model theft. - Collaborate with development, operations, and SOC teams to secure AI environments throughout the lifecycle. - Automate threat detection and remediation workflows related to AI misuse. - Evaluate and integrate AI security tools and model governance solutions. - Contribute to the design and implementation of AI-specific threat models and control frameworks. - Stay current on emerging threats to AI systems and participate in blue/red/purple team exercises involving LLMs and AI services. **AI and Security Engineering** · Secure AI/ML model development and deployment environments (e.g., LLMs, vector databases, training pipelines). · Create automated tools to detect and mitigate AI-related threats (e.g., anomalous model outputs, prompt injections). · Perform adversarial testing and threat modeling of AI systems. · Support logging, monitoring, and alerting for AI/ML environments integrated with SIEM/XDR platforms. · Participate in the design of model access controls, encryption, and governance enforcement. · Assist in the development and enforcement of AI-related security policies and procedures. **Innovation** · Challenge legacy assumptions and recommend innovative, AI-native security approaches. · Identify short- and long-term strategies for securing AI assets that drive business value. · Develop security prototypes and proof-of-concepts for emerging AI architectures. · Stay current on adversarial ML research and translate findings into actionable defenses. **Agility** · Adapt to the rapidly evolving AI landscape and emerging threat vectors. · Navigate ambiguity in AI risk management and compliance controls. · Help business and technical partners adjust to changes in AI security requirements. · Be responsive and adaptive during incidents involving AI systems. **Problem Solving** · Investigate complex security incidents involving AI-generated outputs or manipulated inputs. · Apply critical thinking to defend against novel AI abuse cases. · Develop layered mitigation strategies across models, APIs, and infrastructure. · Own problem resolution end-to-end. **Collaboration** · Partner with SOC analysts, developers, AI engineers, and red teams to defend AI systems. · Lead threat modeling and tabletop exercises focused on AI threat scenarios. · Mentor peers on emerging risks and best practices in AI/ML security. · Foster cross-functional alignment to integrate AI security in enterprise roadmaps. **Communication Skills** · Translate technical AI security issues into business risk language for stakeholders. · Write clear documentation for AI detection rules, playbooks, and findings. · Present AI threat scenarios and mitigation strategies to technical and non-technical audiences. **Strategic Focus** · Align AI security efforts with Nelnet's business, compliance, and technology goals. · Act as a trusted advisor on AI governance, LLM access, and model risk. · Anticipate future regulatory requirements around AI usage and safety. · Deliver security solutions that balance innovation and operational integrity. **Pay Range for this role is - $100,000 -$135,000 **EDUCATION:** Knowledge equivalent to the completion of a Bachelor's degree in Computer Science or a related field of study. **EXPERIENCE:** + 3-5 years in a cybersecurity, security engineering, or threat detection role. + Hands-on experience with machine learning systems, LLMs (e.g., OpenAI, Anthropic, or open-source models), or AI/ML platforms (e.g., SageMaker, Azure ML, Vertex AI). + Familiarity with adversarial machine learning concepts, model risk, or AI red teaming is preferred. + Experience with SIEM platforms, threat detection tools, or security automation frameworks. + Experience in application security, DevSecOps, or secure software development lifecycle (SDLC) is a plus. **COMPETENCIES - SKILLS/KNOWLEDGE/ABILITIES:** Needs: + Knowledge of security, control and computer technology. + Knowledge of how to lead and/or motivate others. + Knowledge of and ability to apply concepts of statistics and probability to identify and address problems, trends, and relationships in work related data. + Knowledge of at least one computer development language, methodology, and techniques. + Familiarity and understanding of AI system architectures and security implications. + Scripting or development experience in Python or similar languages. + Knowledge of AI-specific threat frameworks (e.g., MITRE ATLAS, OWASP LLM Top 10). + Strong investigative skills and comfort working with logs, telemetry, and alerts. + Ability to work across teams and lead cross-functional security initiatives. + Familiarity and experience with various regulations governing IT environments. + Familiarity with regulatory and ethical frameworks around AI security and model governance. + Familiarity and experience with infrastructure deployment and systems administration + Excellent organizational, presentation, verbal, and written communication skills + Ability to effectively assess and communicate risks and appropriate levels of urgency to management and engineering staff + Aptitude for self-study, setting and achieving long term goals + Actively seeks to remain technically current and increase expertise and abilities + Challenges prevailing assumptions when appropriate + Willing to adapt to changing technology and business landscapes + Considers change as opportunities to be challenged and grow + Ability to adapt style of communications to match audience and information sharing needs Wants: + Knowledge of cyber defense and SOC detection capabilities + Knowledge of Indicators of Compromise of common security tools and methodologies + Familiarity with reverse engineering methodologies and tools + Familiarity with forensic methodologies and tools + Familiarity with EDR, firewall, IDS/IPS evasion + Deep understanding of machine learning architectures, LLMs (e.g., GPT, LLaMA), and common AI frameworks (e.g., PyTorch, TensorFlow, Hugging Face). -Please note that we are unable to provide visa sponsorship for this position. To be considered, candidates must already be authorized to work in the United States without the need for current or future sponsorship Our benefits package includes medical, dental, vision, HSA and FSA, generous earned time off, 401K/student loan repayment, life insurance & AD&D insurance, employee assistance program, employee stock purchase program, tuition reimbursement, performance-based incentive pay, short- and long-term disability, and a robust wellness program. Click here to learn more about our benefits: LINK ( . Nelnet is committed to providing a welcoming and respectful workplace where all associates have the opportunity to succeed. As an Equal Opportunity Employer, we ensure that all qualified applicants are considered for employment. Employment decisions are made without regard to race, color, religion/creed, national origin, gender, sex, marital status, age, disability, use of a guide dog or service animal, sexual orientation, military/veteran status, or any other status protected by federal, state, or local law. We value the unique contributions of every team member and believe that a positive work environment benefits everyone. Qualified individuals with disabilities who require reasonable accommodations in order to apply or compete for positions at Nelnet may request such accommodations by contacting Corporate Recruiting at 402-486-5725 or [email protected] . Nelnet is a Drug Free and Tobacco Free Workplace. You may know Nelnet as the nation's largest student loan servicer - but we do more than that. _A lot more._ We're also a professional services company, consumer loan originator and servicer, payment processor, renewable energy innovator, and K-12 and higher education expert (and that's just a shortlist). For over 40 years, we've been serving our customers, associates, and communities to make dreams possible. EEO Info ( | EEO Letter ( | EPPA Info ( | FMLA Info (