Job Description
The Application Security Architect will be responsible for designing, assessing, and governing security for AI/ML-enabled applications within the project. This role focuses on securing the end-to-end AI lifecycle, cloud-native AI infrastructures, and identity & access management for AI agents, while providing strategic security guidance to project stakeholders.
Key Responsibilities
* AI/ML Security Assessments & Risk Management Conduct comprehensive security assessments of AI/ML systems, including data pipelines, model training environments, inference endpoints, and MLOps workflows.
* Identify and analyze complex risks such as data privacy violations, data leakage, adversarial attacks, model poisoning, prompt injection, and misuse of AI technologies.
* Evaluate security threats across the full AI lifecycle—from data collection and model development to deployment and retirement—and define appropriate mitigation strategies.
* Perform threat modeling and risk assessments specific to AI-driven and agent-based systems.
* AI Governance & Security Controls Develop and implement security controls, governance frameworks, and policies for end-to-end AI lifecycle management within the project.
* Support project compliance with AI regulations, responsible AI principles, and data protection standards (e.g., GDPR, NIST AI RMF).
* Create strategic security roadmaps and executive-level recommendations to enable secure AI adoption across the project.
* Cloud & Infrastructure Security for AI Design and review secure cloud architectures for AI workloads across AWS, Azure, and GCP. Implement best practices for IAM, encryption, secrets management, container security, network segmentation, and secure data storage.
* Assess and secure APIs, microservices, and application components that support AI models and intelligent systems.
* Ensure security controls are embedded into CI/CD and MLOps pipelines.
* Identity & Access Management for AI Agents Design IAM models for AI agents, including agent identities, delegated permissions, episodic credentials, and cross-system trust boundaries.
* Implement zero‑trust principles for AI agent authentication, authorization, and privilege management.
* Develop patterns for scoped access, Just‑In‑Time (JIT) authorization, short‑lived tokens, and decoupled privilege elevation.
* Integrate IAM solutions with AI agent orchestration platforms and establish access governance processes, including permission reviews, certifications, and usage monitoring.
* Project Communication & Advisory Translate complex technical security risks into clear business and project impacts for executive and senior stakeholders.
* Prepare security assessment reports, threat models, recommendations, and remediation plans.
* Collaborate closely with AI engineers, data scientists, application teams, IT security, and compliance teams to deliver secure AI‑enabled solutions.
Required Skills & Qualifications
* 3–8+ years of experience in cybersecurity, application security, cloud security, or data security roles.
* Demonstrated hands‑on experience securing AI/ML platforms, models, pipelines, or agent‑based systems.
* Strong knowledge of cloud security across AWS, Azure, and GCP, including IAM, network security, encryption, and API security.
* Solid understanding of AI‑specific threats such as adversarial ML, data contamination, model theft, and prompt injection.
* Experience with containerized environments and orchestration platforms (Docker, Kubernetes).
* Familiarity with MLOps tools and platforms such as SageMaker, Vertex AI, Azure ML, or MLflow.
* Excellent analytical, documentation, and communication skills, with the ability to engage both technical and non‑technical stakeholders.
* Preferred Qualifications Security certifications such as CISSP, CCSP, CCIE Security, or AWS/Azure/GCP Security Specialty.
* Experience with responsible AI initiatives, AI governance models, or AI compliance frameworks.
* Background in security engineering, threat modeling, or red teaming for AI and ML systems.
* Experience working in large enterprise security programs or consulting‑style project environments.
#J-18808-Ljbffr