Principal Security Architect - AI, DevSecOps & SDLC Automation

Our client is a global technology organisation investing in next-generation secure software engineering and AI-driven automation. As part of their continued innovation in secure product development, they are seeking a Principal AI Security Architect to shape and modernize their Software Development Life Cycle (SDLC) through advanced security automation and intelligent validation frameworks.

This is a senior technical role working at the intersection of AI, cybersecurity, and engineering. You will collaborate closely with product owners, security researchers, and full stack engineers to embed autonomous security capabilities into enterprise development pipelines.

Responsibilities

• Integrate security automation seamlessly into the Software Development Life Cycle (SDLC)
• Enable ingestion, normalization, and correlation of security data across SCA, SAST, DAST, vulnerability management and product telemetry tools
• Design and implement AI models that interpret vulnerability scan outputs and autonomously generate validation or exploit scripts in controlled environments
• Build automated vulnerability validation pipelines using sandboxed and orchestrated infrastructure
• Develop classification, scoring logic, and confidence metrics to improve accuracy and reduce false positives
• Implement guardrails, safety classifiers, and auditing mechanisms for responsible LLM operations
• Design multi-agent reasoning workflows to strengthen vulnerability verification processes
• Produce structured Vulnerability Verification Evidence Packages with reproducible findings, logs, and traceability
• Deliver AI-assisted secure code recommendations and automated patching workflows
• Integrate remediation automation into CI/CD pipelines such as Azure DevOps, GitHub Actions, or Jenkins
• Support AI-enhanced penetration testing, API fuzzing, and dynamic security validation initiatives
• Partner with engineering leadership to ensure validated findings drive actionable remediation
• Provide technical guidance to engineers supporting pipeline automation and vulnerability analysis
• Promote secure development practices and encourage adoption of DevSecOps principles across product teams

Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, AI/ML, Computer Engineering, or a related discipline
• At least 6 years of research and development experience, preferably within cybersecurity and AI domains
• Strong background in secure coding practices, architecture reviews, and software security across multiple products or projects
• Solid understanding of threat modelling, vulnerability management, and secure SDLC methodologies
• Proficiency in Python and experience building security automation frameworks
• Hands-on exposure to SAST, DAST, SCA, container scanning, and related security tooling
• Familiarity with Git, build automation, CI/CD pipelines, and DevSecOps practices
• Experience working with cloud and containerized environments
• Strong communication and collaboration skills with the ability to influence cross-functional stakeholders
• Ability to work independently, make architectural decisions, and lead technical initiatives

EA: 14S7084 | Registration No: R1981018