Sr. AI Detect & Respond Engineer

Company Overview

Docusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people’s lives. With intelligent agreement management, Docusign unleashes business-critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity.

Using Docusign’s Intelligent Agreement Management platform, companies can create, commit, and manage agreements with solutions created by the #1 company in e-signature and contract lifecycle management (CLM).

We are seeking a talented and proactive AI Security Operations Engineer to join our team. This position is focused on defending the organization against AI-enabled threats and leveraging AI to enhance our defensive capabilities. You will act as the bridge between AI security and our operational defense teams (CSIRT, Detection & Response, and Threat Intelligence).

In this role, you will analyze how adversaries utilize AI to attack the enterprise, ranging from AI-enhanced phishing and deepfakes to automated vulnerability scanning, and design defenses to mitigate these risks. You will also work to implement AI-powered tooling that improves the speed and efficacy of our threat detection and response workflows.

This position is an individual contributor role reporting to the Sr Director of AI & Data Security.

• Monitor the threat landscape for emerging adversarial AI tactics, techniques, and procedures (TTPs) used by attackers against enterprises
• Collaborate with the Detection and Response teams to develop playbooks and detection logic for AI-enabled attacks, such as deepfakes, voice cloning, and AI-generated social engineering
• Conduct threat modeling and simulation exercises to test the organization's resilience against AI-driven attacks
• Evaluate and implement AI-powered security tools to enhance security operations center (SOC) automation, anomaly detection, and incident triage
• Analyze and mitigate risks associated with Shadow AI and unauthorized use of external AI tools by employees that may introduce threat vectors
• Partner with Threat Intelligence teams to track threat actors leveraging LLMs for code generation, exploit development, or reconnaissance
• Develop countermeasures for adversarial machine learning attacks (e.g., evasion, extraction)
• Define and track measurable security outcomes related to AI threat defense and report progress to leadership
• Translate technical AI security risks into business impact and communicate recommendations to operational stakeholders

Hybrid:
Employee divides their time between in-office and remote work. Access to an office location is required. (Frequency: Minimum 2 days per week; may vary by team but will be weekly in-office expectation)

Positions at Docusign are assigned a job designation of either In Office, Hybrid or Remote and are specific to the role/job. Preferred job designations are not guaranteed when changing positions within Docusign. Docusign reserves the right to change a position's job designation depending on business needs and as permitted by local law.

• 8+ years of experience in information security, with a focus on Incident Response, Threat Intelligence, or Security Operations (SOC)
• Experience or strong understanding of how AI/ML is used in offensive cyber operations (e.g., automated phishing, exploit generation)
• Experience with the MITRE ATLAS framework (Adversarial Threat Landscape for Artificial-Intelligence Systems) and MITRE ATT&CK
• Experience with scripting languages such as Python, Go, or Power Shell for security automation
• Experience with SIEM, SOAR, and EDR platforms, and an understanding of how to integrate AI/ML models into these workflows
• Experience with adversarial machine learning concepts (e.g., data poisoning, model inversion, evasion attacks)
• Demonstrated ability to translate technical security risks into business context and actionable recommendations

• Excellent communication and collaboration skills, with the…