AI Security Engineer

PwC is a global network of more than 370,000 professionals in 149 countries that turns challenges into opportunities. We create innovative solutions in audit, consulting, tax and technology, combining knowledge from all over the world.

PwC SDC Lviv, opened in 2018, is part of this global space. It is a place where technology is combined with team spirit, and ambitious ideas find their embodiment in real projects for Central and Eastern Europe.

What do we guarantee?

• Work format: Remote or in a comfortable office in Lviv - you choose.
• Development: Personal development plan, mentoring, English and Polish language courses.
• Stability: Official employment from day one, annual review of salary and career prospects.
• Corporate culture: Events that unite the team and a space where everyone can be themselves.

We are seeking a Security Engineer to provide deep technical expertise, tooling evaluations, and hands‑on engineering support across our security program. This role acts as a builder‑defender, driving practical security control implementation, assessing emerging technologies, and ensuring secure integration patterns for modern applications—including but not limited to AI systems. You will bridge high‑level security strategy with real engineering execution.

Key Responsibilities:
 

• Implement and operationalize security controls, translating policies and theoretical requirements into real, functioning technical solutions.
• Evaluate and integrate modern security tools, performing hands‑on testing and delivering data‑driven recommendations.
• Design and review secure architecture patterns for application and platform integrations (APIs, cloud services, third‑party tools, internal services).
• Conduct threat modeling for complex use cases, identifying risks such as data exposure, API abuse, system compromise, and emerging AI‑related attack vectors.
• Provide technical security guidance to engineering and product teams proposing new solutions or integrations.
• Partner closely with DevSecOps teams to embed security practices into CI/CD pipelines, container workflows, and cloud environments.

Requirements:
 

• 4+ years in Application Security, Cloud Security, Security Engineering, or DevSecOps.
• Strong knowledge of API security, OAuth/OIDC, containers, and cloud‑native services.
• Hands‑on experience with security tools (posture management, vulnerability scanners, SIEM/SOAR).
• Ability to assess third‑party vendors and modern security technologies.
• Proficiency in Python or another scripting language.
• Understanding of generative AI risks (prompt injection, data leakage) is a plus.
• Strong analytical thinking and clear communication skills.
• Self‑driven, adaptable, and proactive in a fast‑changing tech landscape.

Policy statements:
https://www.pwc.com/ua/uk/about/privacy.html