Lead AI Security Engineer in Minneapolis, Minnesota at Finch Turf, Inc.

Position Title: Lead AI Security Engineer

Job ID: R-000767

Location: US MN Minneapolis Office

Posting Type: Full time

Description:

SPS Commerce is a leading provider of cloud-based supply chain management solutions, serving a global network of retail trading partners. We foster a collaborative and inclusive work environment where innovation and continuous improvement are highly valued. Join SPS Commerce and be part of a dynamic team that's transforming the global retail supply chain!

Position Summary:SPS Commerce is seeking a Security AI Engineering Lead as we begin transforming security delivery through AI and agents. This is a hybrid technical leadership role that combines hands-on security engineering with roadmap and operational leadership expectations. As Tech Lead, you will own the delivery roadmap for your team, set technical direction, and develop your engineers. The role is expected to be a hands-on engineer who contributes to architecture and complex problem-solving. You will be the bridge between strategic program goals and day-to-day engineering execution, ensuring your team delivers high-quality, scalable security outcomes.

Key Responsibilities:

In this role, you will lead the design, delivery, and operation of AI-forward security capabilities while developing the engineers on your team. You will set technical direction, contribute hands-on to engineering work, and partner across the program to deliver scaled, auditable security outcomes.

• Drive the design and implementation of Agentic, AI-enabled, and automation-forward cybersecurity capabilities across the breadth of cyber functions: Cyber Defense, Identity & Data Protection, and Governance, Risk, and Compliance.
• Own the technical direction and delivery roadmap for your team’s domain, translating program strategy into sprint-level execution.
• Actively contribute to security engineering work, architecture reviews, automation development, detection logic, and complex incident response — maintaining deep technical currency.
• Foster a culture of engineering excellence: code review standards, runbook quality, and rigorous testing practices. Influence and enable engineering to adopt these practices at scale.
• Partner with stakeholders across security, engineering, product, and compliance to define security requirements and deliver integrated solutions.
• Manage team capacity, prioritization, and delivery commitments; communicate status and risk clearly to program leadership.
• Hire, mentor, and develop security engineering talent, building a high-performing team aligned to program goals.
• Ensure compliance obligations (SOC 2, SOX, ISO-27001, PCI-DSS, HIPAA) are met through well-engineered, auditable controls.

Required Qualifications:

• 8+ years of experience in security engineering or a related technical discipline; or 10+ years of experience without a degree.
• 2+ years of experience leading or managing a team of engineers, in a formal or informal capacity.
• Experience designing and developing agentic AI solutions, including LLM orchestration, MCP integrations, and multi-agent pipelines.
• Practical knowledge of AI security risks, including prompt injection, jailbreaking, model supply chain threats, NHI, and governance.
• Experience delivering or understanding security aspects around LLM/MCP gateways, controls, AI performance evaluation, and detection and response capabilities.
• Strong technical breadth across security tooling, cloud infrastructure, and automation engineering.
• Proficiency with the CrowdStrike Falcon platform and SIEM platforms (Panther, Splunk, or equivalent).
• Demonstrated ability to balance technical hands-on work with people leadership responsibilities.
• Experience managing delivery across a team: planning, prioritization, and stakeholder communication.
• Strong automation background in Python and/or orchestration platforms such as Tines.
• Cloud-native security expertise across AWS (required), with Azure or GCP a plus.
• Experience with compliance frameworks: SOC 2, SOX, ISO-27001, PCI-DSS, HIPAA.
• Proven ability to hire, mentor, and develop security engineering talent.
• Strong verbal and written communication skills; ability to present to both technical and non-technical audiences.

Preferred Experience

• Experience scaling a security engineering function in a high-growth SaaS environment.
• Familiarity with engineering management frameworks (career ladders, leveling, calibration).
• Proficiency with Infrastructure as Code (Terraform or equivalent).
• Experience with AI-assisted security workflows, including Claude or similar tooling.
• Active participation in the security community.
• Background in security program strategy in addition to engineering execution.
• One or more industry certifications preferred: CISSP, CISM, CISA, CCFE, GIAC, CCIE, CCSP, ABCP, MBCP, ISA, PCIP, CEH.

Location:

This role follows a hybrid work model, with regular in-office presence required at our Minneapolis office.

What We Offer:

At SPS Commerce, we are committed to ensuring that each employee’s compensation reflects their unique experiences, performance, and skills in their role. The salary range for this role considers several factors, including education, relevant skills, work history, certifications, location, and more.

The annual salary range for this role is: $135,400 – $209,900. The actual salary offered will be determined based on the factors listed above and may fall anywhere within the range.

SPS Commerce offers a comprehensive benefits package designed to support employees’ health, well-being, and financial security. Benefits are country-specific and aligned with local laws and market practices.

Commitment to our Employees:

At SPS we power connections that drive the world of commerce forward, and our success depends on making strong decisions, fostering innovation, delivering unparalleled customer solutions, and driving outstanding business performance. We achieve this by creating an environment where every employee feels a true sense of belonging. We embrace diversity, equity, and inclusion, ensuring everyone feels accepted, valued, and empowered to make a meaningful impact.

We are committed to affirmative action and equal opportunity in all aspects of employment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

}