AI Enterprise Security Engineer

Location: San Francisco, California

Department: Security

Work Mode: Hybrid

About the Role

Docusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate business and simplify lives. With our Intelligent Agreement Management platform, we unleash business-critical data trapped in documents, combining the #1 e-signature and contract lifecycle management (CLM) solutions with cutting-edge AI innovation. We are seeking a talented AI Enterprise Security Engineer to design, implement, and maintain security solutions enabling safe, responsible use of AI/ML tools by employees across the organization. This individual contributor role reports to the Sr Director of AI and Data Security and collaborates with Engineering, Product, Security, Data, Privacy, and executive teams to ensure employee-facing AI initiatives powering DocuSign's agreement automation are secure, compliant, and business-aligned. You will develop enterprise-wide AI security strategies, implement controls for AI/ML platforms, conduct threat modeling, mitigate adversarial attacks, establish governance guardrails, ensure regulatory compliance (GDPR, NIST AI RMF, ISO 42001), and translate technical risks into executive-ready business recommendations. Staying ahead of emerging AI threats, you'll mentor teams and support customer-facing security for our e-signature platform. This hybrid role requires minimum 2 days/week in-office. Docusign is committed to trust, equality, and innovation—join us to secure the future of agreement management while advancing your career in AI security.

Key Responsibilities

• Develop and execute enterprise-wide AI security strategies for secure employee adoption of AI/ML tools
• Design and implement security controls for employee-facing AI/ML platforms, applications, and infrastructure
• Collaborate with Product, Engineering, Data, and Privacy teams to integrate security into AI/ML lifecycles
• Conduct threat modeling, risk assessments, and security reviews for employee-accessed AI/ML systems
• Identify and mitigate AI/ML-specific vulnerabilities including adversarial attacks and model misuse
• Establish governance frameworks, guardrails, and policies for responsible AI tool usage organization-wide
• Ensure compliance with internal standards, industry frameworks, and regulatory requirements for AI/ML
• Translate technical risks into business impact and report measurable security outcomes to leadership
• Mentor engineers and employees on AI security best practices and stay current with emerging threats
• Support customer-facing security teams in assurance activities for DocuSign's Intelligent Agreement Management platform

Required Qualifications

• 5+ years of experience in application or product security, with at least 1 year focused on AI/ML systems
• Hands-on experience with AI/ML concepts, architectures, frameworks, and common security threats/mitigation techniques
• Proficiency in programming languages such as Python, Java, or C++
• Experience securing cloud-based AI/ML deployments on AWS, Azure, or GCP
• Demonstrated experience with secure software development practices, AI/ML model security, and data governance
• Proven ability operationalizing security governance and compliance in complex enterprise environments
• Strong ability to translate technical security risks into business context and actionable recommendations

Preferred Qualifications

• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field
• Experience with privacy-preserving ML techniques (differential privacy, federated learning)
• Knowledge of regulations/standards (GDPR, NIST AI RMF, ISO 27001, ISO 42001, SOC 2, FedRAMP)
• Experience with MLOps, CI/CD pipelines, and enterprise-scale AI deployments
• Relevant certifications: CAIP, CISM, CRISC, CISSP, CCSP, or equivalent

Required Skills

• AI/ML security threat modeling and mitigation
• Secure software development lifecycle (SDLC)
• Cloud security (AWS, Azure, GCP)
• Python, Java, or C++ programming
• MLOps and CI/CD pipeline security
• Data governance and privacy-preserving ML
• Threat modeling and risk assessment
• Cross-functional stakeholder communication
• Regulatory compliance (GDPR, NIST, ISO 27001)
• AI governance framework development
• Incident response for AI/ML systems
• Business risk translation
• Attack surface monitoring
• Supply chain security
• Automation and predictive analytics

Benefits

• Competitive base salary: $141,700 - $227,825 (California) plus company bonus plan
• Comprehensive health benefits with 100% employer-paid options from day one
• Generous Paid Time Off plus paid company holidays
• Paid Parental Leave: up to six months for new parents
• Retirement plans with employer contribution potential
• Learning & Development: coaching, online courses, education reimbursement
• Compassionate Care Leave for life-changing events
• Hybrid work model with minimum 2 days/week in-office

DocuSign is an Equal Opportunity Employer.