Job Description
We are looking for a proactive InfoSec Engineer to strengthen the security of Ushur's SaaS platform, AI-powered applications, and cloud infrastructure. Ushur serves customers in regulated industries, where every security vulnerability carries direct regulatory and customer-trust consequences. The role sits within the InfoSec & GRC team and partners closely with engineering, product, IT and compliance counterparts. Day-to-day work spans application and AI security testing, cloud and edge defences, DevSecOps integration, and audit and compliance support.
Responsibilities
Application, Product & AI Security
- Conduct security testing for monthly releases, covering OWASP Top 10 risks for web applications, APIs, and AI-powered features.
- Perform security testing of AI and LLM-driven product features — including prompt injection (direct and indirect), insecure output handling, retrieval-augmented generation (RAG) risks, and abus...