Freelancer - Security Red Teaming Specialist

About the position

As a Red Team Specialist focused on Generative AI Models, you will play a critical role in enhancing the security and integrity of our cutting-edge AI technologies.

Your primary responsibility will be to conduct analysis and testing of our generative AI systems, including but not limited to language models, image generation models, and any related infrastructure.

Your objective is to help clients secure their AI models and frameworks by identifying weaknesses, assessing risks, and providing clear steps for improvement.

Key Responsibilities:

• Simulated Cyber Attacks: Conduct sophisticated and comprehensive simulated attacks on generative AI models and their operating environments to uncover vulnerabilities.
• Vulnerability Assessment: Evaluate the security posture of AI models and infrastructure, identifying weaknesses and potential threats.
• Risk Analysis: Perform thorough risk analysis to determine the impact of identified vulnerabilities and prioritize mitigation efforts.
• Mitigation Strategies: Collaborate with development and security teams to develop effective strategies to mitigate identified risks and enhance model resilience.
• Research and Innovation: Stay abreast of the latest trends and developments in AI security, ethical hacking, and cyber threats. Apply innovative testing methodologies to ensure cutting-edge security practices.
• Documentation and Reporting: Maintain detailed documentation of all red team activities, findings, and recommendations. Prepare and present reports to senior management and relevant stakeholders.

Requirements

Must-Have

• Proven experience in AI vulnerabilities analysis
• Strong understanding of AI technologies and their underlying architectures, especially generative models and agentic frameworks.
• At Least 5 years of experience in Web Penetration testing.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work in a fast-paced, ever-changing environment.

Nice-to-Have:

• Proficiency in Python or NodeJS
• Advanced Certifications in offensive cybersecurity (e.g. OSWE, OSCE3, SEC542, SEC522) are highly desirable.
• Familiarity with agentic frameworks and agentic development experience
• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
• Proven records for vulnerability disclosure, such as CVE

About ActiveFence