AI Security Engineer (m/w/d)

About Us

1&1 is one of Germany's leading telecommunications providers with over 3,100 employees and almost 16 million customer contracts. With pioneering spirit, unusual ideas, and creative teams, we have conquered a leading market position in mobile communications and broadband connections. By combining the 1&1 fiber optic network, which is over 67,000 km long, with regional networks, we are creating Germany's most extensive fiber optic network. We are also building Europe's most modern 5G network based on the novel Open-RAN technology, with open interfaces and 5G functions in a powerful cloud infrastructure. Continue the 1&1 success story by shaping the future through the use and development of innovative technologies. Become part of 1&1.

Your Responsibilities

In this role, you will take on a key position in securing modern AI and GenAI systems and actively contribute to identifying and fixing vulnerabilities early on.

• Conducting penetration tests on AI/GenAI systems (e.g., LLM applications, RAG systems, AI Agents)
• Simulating realistic attack scenarios such as Prompt Injection, Jailbreaks, Data Leakage, Model Manipulation, and Retrieval attacks
• Identifying, analyzing, and documenting vulnerabilities along the entire AI lifecycle
• Developing and implementing security measures (e.g., Guardrails, Input/Output Filtering, Access Controls)
• Supporting the development of secure AI architectures in the sense of "Secure AI by Design"
• Close collaboration with AI/ML Engineers to integrate security into development processes
• Building and further developing AI-specific pentest methodologies, playbooks, and test frameworks
• Developing automated security tests (e.g., Red Teaming, Adversarial Testing)
• Conducting security assessments, reviews, and creating audit reports and risk assessments
• Advising development teams on AI security best practices and conducting training and workshops

What We're Looking For

• Successfully completed studies, e.g., in Computer Science, IT Security, Cyber Security, or a comparable degree program
• Several years of experience in IT Security, Penetration Testing, or Offensive Security
• In-depth knowledge of Web and API Security (e.g., OWASP Top 10)
• Understanding of modern AI/GenAI systems (e.g., LLMs, RAG, API-based architectures)
• Experience in security testing, vulnerability analysis, and exploitation, as well as good programming skills (e.g., Python) for test automation
• Analytical thinking skills and the ability to empathize with attacker perspectives
• Experience in AI Security, LLM Security, or Red Teaming
• Knowledge of relevant frameworks (e.g., OWASP Top 10 for LLM Applications, NIST AI RMF)
• Experience with Adversarial Machine Learning
• Knowledge of Cloud Security (e.g., AWS, Azure)
• Experience in regulated industries (e.g., telecommunications, financial services)

Our Benefits

• Attractive salary
• Strong community of team players
• Trust-based working hours with flexible scheduling and the option to work remotely up to 40%
• Numerous further training opportunities on- and offline
• Discounts on 1&1 products and for various leisure activities
• Company-owned restaurant
• Free drinks and fresh fruit
• Job bike subsidy