AIML Application Security Analyst

Job Title: AI/ML Application Security Analyst
Location: Austin TX
Location Austin TX
Onsite Requirement Yes
Number of days onsite 5 Days

Mandatory Areas
Must Have Skills
Skill 1 Conduct comprehensive security assessments of applications and AI/ML systems to identify vulnerabilities and implement robust security measures.
Skill 2 Proficiency in Application security
Skill 3 Proven experience with SSPM ASPM CSPM and Zero Trust Security frameworks

Good To have Skills
Skill 1 Proficiency in programming languages such as Python Java or C.

Job Description:-
We are seeking a highly skilled and motivated Application Security Analyst to join our dynamic this role you will be at the forefront of securing our cutting-edge applications and AI/ML systems.
You will lead efforts to protect our applications from a wide range of threats ensuring the integrity confidentiality and availability of our data and systems.
This position requires understanding of application security including SSPM using CASB Zero Trust Security and advanced application protection techniques.
This involves conducting security assessments implementing security measures and managing security solutions.
The analyst will collaborate with developers DevOps application owners and data scientists to secure and monitor sensitive applications and data movements playing a critical role in our security posture.

Key Responsibilities:
Security Assessment and Implementation:
Conduct comprehensive security assessments of applications and AI/ML systems to identify vulnerabilities and implement robust security measures.
Develop and enforce security policies standards and procedures to protect against threats such as data breaches DDoS attacks and unauthorized data egress.
SSPM using CASB and Zero Trust Security:
Implement and manage SaaS Security Posture Management (SSPM) solutions using existing CASB to ensure continuous security compliance.
Design and enforce Zero Trust Security frameworks to ensure secure access to applications and data minimizing the risk of unauthorized access.

Application Protection:
Utilize and manage advanced security technologies including web application firewalls (WAF) API security DDoS protection bot mitigation and data loss prevention (DLP) to safeguard applications.
Continuously monitor and respond to security incidents performing root cause analysis and implementing corrective actions.
Leverage AI technologies to enhance the protection of applications utilizing AI-driven threat detection and response mechanisms.

Data Egress Responsibility:
Secure and monitor data movements to prevent unauthorized data egress ensuring the protection of sensitive information.
Collaborate with developers DevOps and data scientists to implement secure data handling practices and monitor data flows.

AI/ML Application Security:
Support the security of AI/ML applications including integrating security practices into the MLOps pipeline and ensuring the secure deployment of large language models (LLMs).
Conduct risk assessments vulnerability scans and implement mitigation strategies for AI/ML-related vulnerabilities.
Staying updated on the latest advancements and threats in AI/ML security is critical.
Stay updated on latest AI/ML security guidelines/governance not to exclude OWASP NIST and ISO/IEC JTC 1/SC 42.
Implementing these recommendations with existing AI/ML security infrastructure.

Collaboration and Communication:
Work closely with cross-functional teams to integrate security practices into the application development lifecycle fostering a culture of security awareness.
Provide security training and awareness programs for developers DevOps and other stakeholders to enhance the overall security posture of the organization.

Education:
Bachelors or masters degree in computer science Cybersecurity Data Science or a related field.

Experience:
7 years of experience in application security cybersecurity or a related field.
Proven experience with SSPM ASPM CSPM and Zero Trust Security frameworks.
Familiarity with AI/ML security including MLSecOps GenAI and LLMs.

Skills:
Strong knowledge of web application firewall (WAF) API security DDoS protection bot mitigation runtime application self-protection (RASP) and data loss prevention (DLP) technologies.
Proficiency in programming languages such as Python Java or C.
Excellent problem-solving and analytical skills.
Strong communication and teamwork abilities.

Preferred Qualifications:
Certifications:
CISSP CISM CompTIA Security CAITI or equivalent.
Certifications in cloud security (e.g. AWS Certified Security Specialty Azure Security Engineer Associate).

Additional Skills:
Experience with cloud platforms (AWS Azure Google Cloud).
Experience/knowledge of GenAI security monitoring tools.
Knowledge of regulatory compliance standards (e.g. GDPR CCPA).