Security Risk Engineer, AI Systems

About Ekco

Founded in 2016, Ekco has quickly become one of Europe’s fastest-growing cloud solution providers and your trusted security-first Managed Service Provider.

IT leaders choose Ekco to drive operational efficiency, scale smarter and stay ahead of risk – powered by local expertise, delivered at European scale.

We specialise in helping organisations advance their cloud maturity guiding transformation, strengthening security, and maximising the value of their technology investments.

️ In simple terms: we help organisations modernise with confidence securing their systems, optimising their cloud, and keeping them resilient in a rapidly changing world.

Today, we’re a thriving team of 1,000+ talented and supportive colleagues across the UK, Ireland, Benelux, South Africa, and Malaysia—and we’re continuing to grow.

At Ekco, how we work matters as much as what we deliver. Our people live by four core values that shape everything we do:

• On It: We take ownership, follow through, and get things done.
• All In : We collaborate, support each other, and commit fully to shared goals.
• Connected: We build trusted relationships with colleagues, clients, and partners.
• Hungry to Grow: We stay curious, keep learning, and push ourselves to the next level.

If these values resonate with you, you’ll feel right at home here.

The Role

Day-to-day at Ekco:

We are seeking a Security Risk Engineer, AI Systems, to join our Technical Advisory team. This role focuses on helping clients securely adopt and integrate AI technologies into both new and existing products, platforms, and business workflows.

The ideal candidate combines strong technical security expertise with a deep curiosity about emerging technologies. You will evaluate modern application architectures, AI-enabled systems, and product ecosystems to identify security risks, recommend appropriate controls, and help clients make informed risk decisions.

This is a client-facing role requiring strong communication skills, independent thinking, and a passion for understanding how technology works beneath the surface.

What you’ll be responsible for:

• Conduct technical security risk assessments for applications, products, platforms, and AI-enabled systems.

• Analyze application architectures, technology stacks, integrations, data flows, and trust boundaries.

• Where required, validate findings through hands-on testing, proof of concept development, or security tooling

• Identify security threats, attack vectors, vulnerabilities, and business risks across traditional and AI-based environments.

• Perform threat modeling exercises for applications, products, and AI/LLM implementations.

• Evaluate security controls and recommend risk mitigation strategies aligned with business objectives.

• Assess the security implications of AI adoption, including LLM integrations, agent-based systems, RAG architectures, and third- party AI services with a focus on risks such as prompt injection, data leakage, and model misuse

• Advise clients on secure design principles, security architecture decisions, and product security best practices.

• Collaborate with engineering, product, security, and business stakeholders to communicate technical risks effectively.

• Continuously track developments in AI, application security and evolving threat landscapes.

• Leverage AI tools and assistants to improve efficiency, research, analysis, and day-to-day delivery activities.

Required Qualifications:

• Experience in Application Security, Product Security, Security Engineering, Security Architecture, or Technical Security Risk Assessment.

• Strong understanding of modern application architectures, APIs, cloud-native technologies, and software development practices.

• Ability to understand and evaluate complex technology stacks, system designs, and data flows.

• Experience identifying security threats, conducting threat modeling, and assessing security controls.

• Familiarity with secure software development practices and common application security vulnerabilities.

• Strong written and verbal communication skills with the ability to explain technical risks to both technical and non-technical stakeholders.

• Self-motivated with the ability to independently learn and assess emerging technologies.

• Comfortable leveraging AI tools to enhance analysis, research, and delivery efficiency.

Preferred Qualifications:

• Experience as an Application Security Engineer, Product Security Engineer, Security Engineer, or Security Architect.

• Relevant certifications are a plus, such as;

• Application Security: CSSLP, GWAPT, GWEB, or equivalent

• Offensive Security: OSCP, OSEW, eWPT, or similar hands-on certifications

• Cloud Security: AWS Security Specialty, Azure Security Engineer (AZ-500), CCSP

• AI/ML (nice to have): GMLE, CAISS, Azure AI Engineer, or equivalent

• Experience assessing AI/ML systems, LLM deployments, AI agents, or generative AI platforms.

• Knowledge of AI security concepts including prompt injection, model abuse, data poisoning, model supply chain risks, sensitive data exposure, and AI governance considerations.

• Experience with Security Automation and secure-by-design practices.

• Hands-on software development or programming experience.

• Experience reviewing cloud environments and modern SaaS architectures.

• Familiarity with DevSecOps and CI/CD security practices.

Benefits / Perks

• ️ Time Off: 25 days annual leave + public holidays
• Birthday Leave: One extra day off to celebrate
• Company Pension Scheme
• Employee Assistance Programme (EAP) for wellbeing support
• ️ EkcOlympics: Global team activity challenges
• Unlimited access to Pluralsight for continuous development
• Real opportunities to grow, including international progression

Why Ekco

• Company of the year 2026 Tech Excellence Awards
• ️ Microsoft 2023 Rising Star Security Partner of the Year
• First Irish Microsoft MSP to achieve all four Microsoft Security Specialisations
• A culture rooted in diversity, equity, inclusion, and belonging
• Strong commitment to internal mobility and career progression
• Flexible, family‑friendly working at the heart of our culture
• A trusted, security‑first MSP helping organisations scale smarter and stay ahead of risk