Merck
Overview
Job Description The Cyber Defense AI & Automation team are seeking a Cybersecurity AI Engineer to design and implement AI-driven automation that transforms how we defend the enterprise. This role focuses on building security-aware AI agents and automated workflows that integrate across cloud, identity, endpoint, and network security platforms. You will use Azure Data Explorer (ADX) as the central telemetry layer to power AI reasoning and safe, autonomous security outcomes. You will partner closely with data scientists, platform engineers, and automation developers to convert raw telemetry into decision-ready insights, and to engineer scalable, explainable AI systems with enforcement guardrails. Responsibilities
Design and deploy AI agents in Azure AI Foundry and Copilot Studio, backed by ADX telemetry. Build and operationalize security automations using Logic Apps, APIs, and cloud-native integrations. Translate ADX telemetry into enriched case packages that drive AI reasoning and decision-making. Develop analyst-facing experiences (Teams cards, Copilot interactions) with confidence scoring and clear rationale. Integrate AI-driven outputs with security control platforms for automated enforcement across cloud, identity, endpoint, and network. Implement guardrails including kill switches, dry-run modes, and time-limited actions. Ensure observability with audit logs, dashboards, and feedback loops. Collaborate across cybersecurity domains to embed AI and automation into enterprise defense. Qualifications
Required Bachelor’s degree in Computer Science, Cybersecurity, Engineering, or a related field. 5+ years in cybersecurity engineering, automation, or applied AI. Proficiency with KQL and hands-on experience working with ADX telemetry. Experience building automations with Logic Apps, APIs, and JSON pipelines. Strong understanding of enterprise security domains (endpoint, identity, cloud, network). Ability to explain AI-driven recommendations to both technical and non-technical audiences. Preferred Experience with Azure AI Foundry / AI Studio and Copilot Studio. Familiarity with APIs from security control platforms. Exposure to threat intelligence integration and enrichment pipelines. Knowledge of explainable AI (XAI) in security contexts. Background in SOAR-style workflows. What Success Looks Like
Delivery of scalable, production-ready AI agents and automations powered by ADX. Demonstrated reduction in manual analyst workload and security noise. Established reusable frameworks for AI and automation across multiple domains. Trusted AI outcomes that improve both analyst experience and enterprise defense posture. Legal and Compliance
US and Puerto Rico Residents Only: Our company is committed to inclusion, ensuring that candidates can engage in a hiring process that exhibits their true capabilities. Please click here if you need an accommodation during the application or hiring process. As an Equal Employment Opportunity Employer, we provide equal opportunities to all employees and applicants for employment and prohibit discrimination on the basis of race, color, age, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or other applicable legally protected characteristics. As a federal contractor, we comply with all affirmative action requirements for protected veterans and individuals with disabilities. For more information about personal rights under the U.S. Equal Opportunity Employment laws, visit: EEOC Know Your Rights EEOC GINA Supplement We are proud to be a company that embraces the value of bringing together, talented, and committed people with diverse experiences, perspectives, skills and backgrounds. The fastest way to breakthrough innovation is when people with diverse ideas, broad experiences, backgrounds, and skills come together in an inclusive environment. We encourage our colleagues to respectfully challenge one another’s thinking and approach problems collectively. Learn more about your rights, including under California, Colorado and other US State Acts Work Model and Compensation
U.S. Hybrid Work Model: Effective September 5, 2023, employees in office-based positions in the U.S. will be working a Hybrid work consisting of three total days on-site per week, Monday - Thursday, with Friday remote unless business critical tasks require on-site presence. This model may not apply to certain roles. The salary range for this role is $114,700.00 - $180,500.00. The successful candidate will be eligible for annual bonus and long-term incentive, if applicable. We offer a comprehensive package of benefits including medical, dental, vision, retirement benefits (401(k)), paid holidays, vacation, and sick days. More information about benefits is available at the company site. Application details: You can apply for this role through the company careers site. The application deadline is shown on the posting. Additional Information
Relocation: No relocation. VISA Sponsorship: No. Travel Requirements: 10%. Flexible Work Arrangements: Remote. Shift: 1st - Day. Required Skills: Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning.
#J-18808-Ljbffr
Job Description The Cyber Defense AI & Automation team are seeking a Cybersecurity AI Engineer to design and implement AI-driven automation that transforms how we defend the enterprise. This role focuses on building security-aware AI agents and automated workflows that integrate across cloud, identity, endpoint, and network security platforms. You will use Azure Data Explorer (ADX) as the central telemetry layer to power AI reasoning and safe, autonomous security outcomes. You will partner closely with data scientists, platform engineers, and automation developers to convert raw telemetry into decision-ready insights, and to engineer scalable, explainable AI systems with enforcement guardrails. Responsibilities
Design and deploy AI agents in Azure AI Foundry and Copilot Studio, backed by ADX telemetry. Build and operationalize security automations using Logic Apps, APIs, and cloud-native integrations. Translate ADX telemetry into enriched case packages that drive AI reasoning and decision-making. Develop analyst-facing experiences (Teams cards, Copilot interactions) with confidence scoring and clear rationale. Integrate AI-driven outputs with security control platforms for automated enforcement across cloud, identity, endpoint, and network. Implement guardrails including kill switches, dry-run modes, and time-limited actions. Ensure observability with audit logs, dashboards, and feedback loops. Collaborate across cybersecurity domains to embed AI and automation into enterprise defense. Qualifications
Required Bachelor’s degree in Computer Science, Cybersecurity, Engineering, or a related field. 5+ years in cybersecurity engineering, automation, or applied AI. Proficiency with KQL and hands-on experience working with ADX telemetry. Experience building automations with Logic Apps, APIs, and JSON pipelines. Strong understanding of enterprise security domains (endpoint, identity, cloud, network). Ability to explain AI-driven recommendations to both technical and non-technical audiences. Preferred Experience with Azure AI Foundry / AI Studio and Copilot Studio. Familiarity with APIs from security control platforms. Exposure to threat intelligence integration and enrichment pipelines. Knowledge of explainable AI (XAI) in security contexts. Background in SOAR-style workflows. What Success Looks Like
Delivery of scalable, production-ready AI agents and automations powered by ADX. Demonstrated reduction in manual analyst workload and security noise. Established reusable frameworks for AI and automation across multiple domains. Trusted AI outcomes that improve both analyst experience and enterprise defense posture. Legal and Compliance
US and Puerto Rico Residents Only: Our company is committed to inclusion, ensuring that candidates can engage in a hiring process that exhibits their true capabilities. Please click here if you need an accommodation during the application or hiring process. As an Equal Employment Opportunity Employer, we provide equal opportunities to all employees and applicants for employment and prohibit discrimination on the basis of race, color, age, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or other applicable legally protected characteristics. As a federal contractor, we comply with all affirmative action requirements for protected veterans and individuals with disabilities. For more information about personal rights under the U.S. Equal Opportunity Employment laws, visit: EEOC Know Your Rights EEOC GINA Supplement We are proud to be a company that embraces the value of bringing together, talented, and committed people with diverse experiences, perspectives, skills and backgrounds. The fastest way to breakthrough innovation is when people with diverse ideas, broad experiences, backgrounds, and skills come together in an inclusive environment. We encourage our colleagues to respectfully challenge one another’s thinking and approach problems collectively. Learn more about your rights, including under California, Colorado and other US State Acts Work Model and Compensation
U.S. Hybrid Work Model: Effective September 5, 2023, employees in office-based positions in the U.S. will be working a Hybrid work consisting of three total days on-site per week, Monday - Thursday, with Friday remote unless business critical tasks require on-site presence. This model may not apply to certain roles. The salary range for this role is $114,700.00 - $180,500.00. The successful candidate will be eligible for annual bonus and long-term incentive, if applicable. We offer a comprehensive package of benefits including medical, dental, vision, retirement benefits (401(k)), paid holidays, vacation, and sick days. More information about benefits is available at the company site. Application details: You can apply for this role through the company careers site. The application deadline is shown on the posting. Additional Information
Relocation: No relocation. VISA Sponsorship: No. Travel Requirements: 10%. Flexible Work Arrangements: Remote. Shift: 1st - Day. Required Skills: Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning.
#J-18808-Ljbffr