About this role
Job Description AI Security Solution Architect ? Application Security, Zero Trust & AI Governance Role Summary
? Lead the end-to-end design and governance of an AI-driven vulnerability detection and remediation platform.
? Ensure Zero Trust architecture, regulatory compliance, auditability, and secure SDLC integration.
Required Skills
Application Security
? Application Security (AppSec) including:
? SAST
? SCA
? DAST
? API Security
? Identity and Access Management (IAM)
? Strong experience with:
? Checkmarx
? Snyk
? Fortify
Cloud & Security Architecture
? Zero Trust Architecture (NIST 800-207).
? Cloud security experience with GCP and Azure.
AI Security
? AI security, including:
? Prompt injection protection
? Model abuse prevention
? LLM risk management
DevSecOps & CI/CD
? Experience with CI/CD platforms, including:
? GitHub
? Jenkins
? GitLab
AI / Agentic AI Expectations
? Define agent orchestration strategy using multi-agent architecture and judge models.
? Establish guardrails for AI-driven decisions and suppression workflows.
? Lead Retrieval-Augmented Generation (RAG)-based knowledge integration for secure coding.
Key Responsibilities
Architecture & Security Design
? Define the AI-driven Application Security reference architecture integrating Checkmarx, CI/CD pipelines, and Agentic AI.
? Lead Zero Trust Architecture (ZTA) design, including:
? API Security
? Identity Management
? Role-Based Access Control (RBAC)
? Attribute-Based Access Control (ABAC)
? Define secure SDLC and DevSecOps frameworks.
AI Security & Governance
? Drive LLM-based vulnerability detection and remediation governance.
? Oversee multi-agent decision governance, including LLM judge models and consensus controls.
? Conduct AI/ML security risk reviews covering:
? Model integrity
? Prompt injection
? Data leakage
? Define policies for automated remediation and escalation thresholds.
Risk, Compliance & Audit
? Lead risk assessments and compliance mapping for:
? PCI-DSS
? SOX
? OSFI
? NIST
? Ensure auditability through:
? Trace IDs
? Evidence logs
? SIEM integration
Requirements Sailpoint