Bestkaam Logo
Back to Jobs
Programmers.io

Application Security Architect with AI -

Actively Reviewing

Programmers.io

4–8 yrs exp Posted 5 hours ago  · Apply by Sep 14, 2026

Job Role - Application Security Architect with AI

Location - Princeton NJ(Onsite)

Job Type - Contract/Full Time(both Option available)


Job Description:

Core: Application Security and Vulnerability Management

Role: Senior Security Consultant (Application Security & AI Governance). Advising enterprise clients on modern AppSec, AI/LLM risk mitigation, and risk-based vulnerability management.

Core Responsibilities


  • AppSec Assessments: Evaluate client software practices using BSIMM or OWASP SAMM to build maturity roadmaps.
  • Threat Modeling: Conduct architectural risk assessments and threat modeling workshops for client engineering teams.
  • DevSecOps Pipelines: Guide clients on embedding automated security tools (SAST, DAST, SCA) into CI/CD workflows.
  • AI Threat Profiling: Assess risks unique to GenAI, LLMs, and agentic integrations using frameworks like the OWASP Top 10 for LLMs.
  • AI Defenses: Design architectural guardrails to prevent prompt injection, data poisoning, and unauthorized data leakage.
  • AI Governance: Author enterprise policies, risk frameworks, and data privacy controls for corporate AI use.
  • Program Modernization: Redesign client vulnerability management workflows to shift them from reactive scanning to proactive orchestration.
  • Risk Prioritization: Establish triage systems utilizing CVSS and EPSS metrics so clients fix high-risk flaws first.
  • Tool Selection: Act as an independent advisor to help clients select and optimize AppSec Posture Management (ASPM) tools.
  • Client Deliverables: Produce executive-ready risk reports, technical blueprints, and developer remediation playbooks. [1, 2, 3]

Required Technical Skills

  • AppSec Tooling: Hands-on experience with enterprise suites like Snyk, Checkmarx, GHAS, Wiz, or Veracode.
  • AI Ecosystems: Understanding of vector database security, AI orchestration frameworks (LangChain), and API security.
  • Cloud Architecture: Security proficiency across major cloud-native infrastructures (AWS, Azure, or GCP).
  • Standards & Frameworks: Deep knowledge of OWASP Top 10, ASVS, NIST SSDF, and ISO 27034.

Experience & Qualifications


  • Experience: cybersecurity consulting, application security engineering.Vulnerability Management, AI Security
  • Education: Bachelor’s degree in Cybersecurity, Computer Science, or equivalent practical experience.
  • Certifications: CISSP, CSSLP, CCSP, CISA, or specialized AI security credentials preferred.
  • Consulting Skills: Strong presentation skills to communicate technical risks to both developers and C-level executives.