AI Cybersecurity Engineer at Grailbio

Our mission is to detect cancer early, when it can be cured. We are working to change the trajectory of cancer mortality and bring stakeholders together to adopt innovative, safe, and effective technologies that can transform cancer care. We are a healthcare company, pioneering new technologies to advance early cancer detection. We have built a multi-disciplinary organization of scientists, engineers, and physicians and we are using the power of next-generation sequencing (NGS), population-scale clinical studies, and state-of-the-art computer science and data science to overcome one of medicine’s greatest challenges. GRAIL is headquartered in the bay area of California, with locations in Washington, D.C., North Carolina, and the United Kingdom. It is supported by leading global investors and pharmaceutical, technology, and healthcare companies. For more information, please visit grail.com Responsibilites • Agentic Security Development: Build and maintain a secure reasoning layer for GRAIL data strategy, moving security from a concept to a functional necessity within business workflows. • Domain-Specific Model Engineering: Develop and refine healthcare-specific security detection models (e.g., Content Safety Classifiers, Behavioral / Alignment Monitoring Models) that outperform generic models by minimizing domain-specific blind spots. • Privacy-Preserving and Data Leakage Computation: Implement and manage cryptographic Private Information Retrieval (PIR) systems (such as SealPIR, XPIR, or CPIR) to protect access patterns over large-scale patient record datasets. Detects and prevents exposure of sensitive data (PII, secrets, enterprise data). • Integrity & Tamper Detection: Design data-layer protections, including bilinear pairing checks and cryptographic receipts, to ensure any server-side tampering is detected instantly. • Cloud Infrastructure Security: Deploy and maintain Terraform IaC across AWS multi-cloud environments, ensuring VPC isolation and continuous threat exposure monitoring. • Security Observability: Utilize XAI tools like LIME and SHAP to analyze model failure modes, ensuring that security controls do not inadvertently cause HIPAA availability violations or disrupt care coordination. Key responsibilities include: • Design, build, and support AI/ML solutions and integrations across the enterprise • Evaluate and secure AI platforms, LLMs, Claude, Gemini, ChatGPT and AI-powered development tools (e.g., GitHub, OKTA, PaloAlto) in AWS Bedrock. • Lead development of AI security controls, guardrails, and governance frameworks • Perform threat modeling and risk assessments for AI/ML systems and integrations • Partner with engineering teams to enable secure AI development practices, including prompt engineering, API security, and data protection • Assess and mitigate risks related to LLMs, including prompt injection, model leakage, and data exposure • Contribute to secure architecture patterns for AI-enabled applications and services • Support security reviews, testing, and validation of AI use cases and implementations • Collaborate with cloud, data, and application teams to ensure secure deployment of AI capabilities • Evaluate and onboard AI vendors and tools, ensuring alignment with security, privacy, and compliance requirements • Promote awareness and adoption of secure AI usage practices across the organization • Remain current on emerging AI and security risks, trends, and technologies • Ensure alignment and compliance with industry standards (NIST AI-RMF, ISO 42001, OWASP Top 10 for LLMs) and advanced security architectures (Agentic, MCP). GRAIL Core Values & Expected Behaviors Demonstrate GRAIL’s values in every engagement: • Be Courageous Challenge the status quo, step up to address difficult issues, and support others who do the same. • Solve Problems Together Collaborate across boundaries, bring in diverse skillsets, and work with rigor, speed, and a data-driven mindset. • Think BIG! Pursue ambitious goals with focused execution and bring in external perspectives to shape future solutions. • Embrace Change Navigate ambiguity, anticipate the future, and turn complexity into opportunity. • Bring an Open Mind Cultivate curiosity, listen actively to diverse voices, and challenge assumptions to unlock innovation. Required Qualifications • Strong hands-on experience with AI/ML technologies, LLMs, or AI development tools • 3–5+ years of experience in security engineering, application security, or cloud security • Experience performing threat modeling, security architecture design, and secure code review or testing • Experience developing AI solutions within IDEs, utilizing AI code assistants • Experience working with LLM APIs (OpenAI, Anthropic, etc.) • Familiarity with AI frameworks such as LangChain, LlamaIndex, or similar • Understanding of AI/ML lifecycle and prompt engineering • Familiarity with AI security risks such as prompt injection, data leakage, and model misuse • Experience working in cloud environments (AWS, Azure, or GCP) • Familiarity with secure development practices (DevSecOps) • Working knowledge of OWASP Top 10 and application security principles • Strong collaboration and communication skills Preferred Qualifications • Experience with agentic and Model Context Protocol (MCP) architectures. • Expertise in Python, R, Java, or similar programming languages. • Experience in GCP or AWS cloud-native services, architectures, and tools. • Advanced knowledge of security and governance frameworks (NIST AI-RMF, ISO 42001, OWASP Top 10 for LLM). This role may be eligible for other forms of compensation, including an annual bonus and/or incentives, subject to the terms of the applicable plans and Company discretion. This range reflects a good-faith estimate of the range that the Company reasonably expects to pay for the position upon hire; the actual compensation offered may vary depending on factors such as the candidate’s qualifications. Employees in this role are also eligible for GRAIL’s comprehensive and competitive benefits package, offered in accordance with our applicable plans and policies. This package currently includes flexible time-off or vacation; a 401(k) retirement plan with employer match; medical, dental, and vision coverage; and carefully selected mindfulness programs. GRAIL is an equal employment opportunity employer, and we are committed to building a workplace where every individual can thrive, contribute, and grow. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender, gender identity, sexual orientation, age, disability, status as a protected veteran, , or any other class or characteristic protected by applicable federal, state, and local laws. Additionally, GRAIL will consider for employment qualified applicants with arrest and conviction records in a manner consistent with applicable law and provide reasonable accommodations to qualified individuals with disabilities. Please contact us at [Upgrade to PRO to see contact] if you require an accommodation to apply for an open position. GRAIL maintains a drug-free workplace. We welcome job-seekers from all backgrounds to join us!