Security Engineer, VP – AI & Software Security
Blackstone
- Location
- Onsite (New York 601 Lex, New York)
- Compensation
- $200k - $225k/yr
- Employment
- Full-time
- Level
- Senior Level
About the Role
Blackstone, a leading alternative asset manager, is seeking a Security Engineer to join its Technology Innovations team. This role is crucial for embedding security into the AI software development lifecycle, ensuring the secure design, development, and operation of AI systems across the firm.
Skills
Benefits
- Medical Insurance
- Dental Insurance
- Vision Insurance
- FSA Benefits
- Paid Time Off
- Life Insurance
- 401(k) Plan
Perks
- Discretionary Bonuses
- Equity
Full job details
Blackstone is the world’s largest alternative asset manager. Blackstone seeks to deliver compelling returns for institutional and individual investors by strengthening the companies in which the firm invests. Blackstone’s over $1.3 trillion in assets under management include global investment strategies focused on real estate, private equity, credit, infrastructure, life sciences, growth equity, secondaries and hedge funds. Further information is available at www.blackstone.com. Follow @blackstone on LinkedIn, X (Twitter), and Instagram.
Blackstone Technology Innovations Profile:
Blackstone Technology and Innovations (BXTI) is the technology team at the core of each of Blackstone’s businesses and new growth initiatives. Serving both internal and external clients, we work to build the next generation of systems that manage risk, create efficiency, and improve transparency within the firm and across our broad community of investors and portfolio companies.
BXTI is fast paced and entrepreneurial – our open, iterative design processes and rapid pace of development mean that everyone on the team has the opportunity to make an impact from day one. We are problem solvers who can take projects from idea to implementation. We believe in active mentoring and developing excellence. We collaborate to find the best answers for our customers and for Blackstone. We are critical to the firm maintaining its competitive edge.
Your Team and Role:
Blackstone’s Security Engineering (SecEng) Team is responsible for enabling secure software delivery across the firm by identifying, assessing, and reducing technology risk while maintaining development velocity. As Blackstone rapidly expands its use of AI, LLM, machine learning platforms, and AI-enabled software, the SecEng team plays a critical role in ensuring these systems are designed, built, and operated securely.
The Security Engineer – AI & Software Security role focuses on securing AI systems, platforms, and use cases across the firm. This includes working closely with engineering, data science, platform, and product teams to embed security into the AI software development lifecycle, from design through deployment and operation.
This role is highly cross-functional and execution-oriented. You will perform security reviews, threat modeling, code review, penetration testing, and secure design for AI-enabled applications and supporting platforms. You will also help define scalable security patterns and controls that allow teams to safely build and deploy AI solutions in cloud-native environments.
You will join a collaborative team of security and software engineers responsible for evolving how Blackstone approaches application, cloud, and AI security as the firm continues to modernize its technology stack.
Responsibilities:
Serve as a security engineering partner for AI-enabled applications, machine learning platforms, and data-driven systems across Blackstone.
Perform architecture and design reviews for AI systems, including model pipelines, inference services, data flows, and supporting cloud infrastructure.
Conduct secure code reviews for software and services that integrate AI//LLM/ML capabilities, with a focus on identifying security flaws, misuse cases, and unsafe patterns.
Lead and execute penetration testing and adversarial testing activities for AI-enabled applications and APIs, including abuse scenarios unique to AI systems.
Develop and maintain threat models for AI systems, addressing risks such as data poisoning, model theft, prompt injection, insecure model deployment, and unauthorized access.
Partner with engineering and data science teams to embed secure-by-design principles into AI development workflows, CI/CD pipelines, and platform services. • Help define and standardize security controls, guardrails, and reference architectures for applied AI use cases in cloud-native environments.
Work with platform and cloud teams to ensure AI workloads are securely deployed using containers, Kubernetes, and managed cloud services.
Translate complex AI security risks into clear, actionable guidance for technical and non-technical stakeholders.
Contribute to security risk reduction initiatives by identifying systemic AI and application security issues and driving remediation at scale.
Assist with security incident response and investigations related to AI-enabled systems, including post-incident reviews and control improvements.
Mentor and support junior engineers, helping grow security engineering capabilities across the team.
Stay current with emerging AI security threats, industry best practices, and regulatory considerations, applying them pragmatically within the enterprise.
Qualifications:
A minimum of 6 years of progressive experience in one or more of the following:
Software engineering or security engineering, with strong proficiency in languages such as Python, Java, Go, or similar
Performing security reviews, code reviews, and design assessments for complex software systems
Designing and building resilient, well-documented systems that reduce operational and security risk
Working closely with application, platform, DevOps, and infrastructure teams to integrate security into development lifecycles • Managing day-to-day security engineering execution, including handling requests, reviews, and remediation guidance
Application security and cloud security, including identification and mitigation of software and infrastructure risks Cloud-native architectures, with a strong preference for AWS, containers, and Kubernetes
Infrastructure-as-code (IaC), with hands-on experience using Terraform • Communicating security risks and mitigation strategies effectively to non-security stakeholders
A minimum of 2 year of experience in one or more of the following areas:
Securing AI/ML platforms, pipelines, or AI-enabled applications
Threat modeling or risk assessment for data-driven or model-based systems
Multi-cloud architecture and security integration
A minimum of Bachelor’s degree (or foreign equivalent) in Computer Science, Cybersecurity, Engineering, or a related field
The duties and responsibilities described here are not exhaustive and additional assignments, duties, or responsibilities may be required of this position. Assignments, duties, and responsibilities may be changed at any time, with or without notice, by Blackstone in its sole discretion.
Expected annual base salary range:
$200,000 - $225,000Actual base salary within that range will be determined by several components including but not limited to the individual's experience, skills, qualifications and job location. For roles located outside of the US, please disregard the posted salary bands as these roles will follow a separate compensation process based on local market comparables.
Additional compensation and benefits offered in connection with the role consist of comprehensive health benefits, including but not limited to medical, dental, vision, and FSA benefits; paid time off; life insurance; 401(k) plan; and discretionary bonuses. Certain employees may also be eligible for equity and other incentive compensation at Blackstone’s sole discretion.
Blackstone is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, creed, religion, sex, pregnancy, national origin, ancestry, citizenship status, age, marital or partnership status, sexual orientation, gender identity or expression, disability, genetic predisposition, veteran or military status, status as a victim of domestic violence, a sex offense or stalking, or any other class or status in accordance with applicable federal, state and local laws. This policy applies to all terms and conditions of employment, including but not limited to hiring, placement, promotion, termination, transfer, leave of absence, compensation, and training. All Blackstone employees, including but not limited to recruiting personnel and hiring managers, are required to abide by this policy.
If you need a reasonable accommodation to complete your application, please contact Human Resources at 212-583-5000 (US), +44 (0)20 7451 4000 (EMEA) or +852 3656 8600 (APAC).
Depending on the position, you may be required to obtain certain securities licenses if you are in a client facing role and/or if you are engaged in the following:
Attending client meetings where you are discussing Blackstone products and/or and client questions;
Marketing Blackstone funds to new or existing clients;
Supervising or training securities licensed employees;
Structuring or creating Blackstone funds/products; and
Advising on marketing plans prepared by a sales team or developing and/or contributing information for marketing materials.
Note: The above list is not the exhaustive list of activities requiring securities licenses and there may be roles that require review on a case-by-case basis. Please speak with your Blackstone Recruiting contact with any questions.
To submit your application please complete the form below. Fields marked with a red asterisk * must be completed to be considered for employment (although some can be answered "prefer not to say"). Failure to provide this information may compromise the follow-up of your application. When you have finished click Submit at the bottom of this form.