Senior AI Security Engineer (m,f,x)

The Role

We're looking for a new teammate to join us on the journey of keeping HelloFresh a trusted name as the business goes through AI transformation across all verticals.

The person in this role will lead the security of our AI stack end-to-end and make it safe to build boldly. They'll map real attack paths across data, training, inference, agents, and RAG; turn them into guardrails and launch gates; and enable product teams to ship faster with confidence. Their work protects customer trust, IP, and brand while setting an internal bar for how modern AI should be secured.

What You'll Do

• Threat model and harden data pipelines, training jobs, inference APIs, agents/tools, and RAG systems
• Mitigate key risks: prompt injection, data exfiltration, tool abuse, data/model poisoning, membership inference, model theft
• Build guardrails: content safety and policy enforcement, semantic/PII redaction, allow/deny tooling, tenant isolation
• Operationalize evaluations: red-team corpora, adversarial test suites, regression baselines, drift and abuse detection
• Secure RAG: document sanitization, namespace/metadata access control, query-time authZ, cache and retrieval controls
• Govern secrets and spend for model providers, embeddings, and vector DBs with quota and anomaly detection
• Lead IR for AI features: logging and telemetry design, prompt/session forensics, containment, and post-incident learning
• Partner across functions with Product, ML, Platform, Legal, and Compliance to set launch gates and ship safe features
• Teach and scale: internal standards, playbooks, and short courses that raise the baseline

What You'll Bring

• 5+ years in AppSec/Cloud/Platform Security. 2+ years securing ML/LLM apps or building them at scale
• Proficient in Python and one of TypeScript/Go/Java. Able to read ML code and pipelines
• Hands-on with modern AI stacks (e.g., OpenAI/Azure AI/Vertex AI/Bedrock) and LLM frameworks (LangChain/LlamaIndex)
• Strong grasp of cloud IAM, KMS/HSM, container/Kubernetes security, IaC and CI/CD hardening
• Familiarity with AI security bodies of knowledge: OWASP Top 10 for LLM Apps, MITRE ATLAS, secure RAG patterns
• Working knowledge of governance and risk frameworks: NIST AI RMF, ISO/IEC 42001 & 23894, GDPR, EU AI Act
• Clear communicator who drives design decisions and ships secure defaults

What We Offer

• Comprehensive relocation assistance to move to Berlin plus visa application support
• Healthy discount on weekly HelloFresh boxes
• Annual learning and development budget to attend conferences or purchase educational resources plus access to the HelloFresh Academy
• Subsidised childcare with a professional nannying agency
• Free access to Headspace, biweekly in-house yoga classes (remote since March 2020)
• A diverse and vibrant international environment of 70+ different nationalities
• Additional perks include: Free crash course in German, compensation for advanced external German classes, discounts for our neighboring gym & Urban Sports Club, summer & winter parties, discount on our food vending machines
• The chance to have a significant impact on one of the fastest-growing technology companies in Europe in an exciting growth phase