Lead AI AppSec Engineer

The OpportunityWe've partnered with a leading global investment firm that is significantly expanding how AI is used across the enterprise. As part of that effort, they're hiring a Lead AI Application Security Engineer to join their Information Security organization and strengthen how AI-related applications are designed, built, and operated securely.This is a senior, hands-on role for someone who brings deep application security experience and wants to apply those fundamentals to modern AI use cases inside a large, complex environment.What You'll Be Working On- Applying application security best practices to AI-enabled applications, services, and workflows- Identifying and mitigating security risks associated with Large Language Models, AI agents, and supporting platforms- Embedding automated security checks such as SAST, SCA, and DAST into CI/CD pipelines- Performing threat modeling using established frameworks and applying those findings in agile delivery environments- Partnering closely with engineering, platform, and security teams to support secure development practices- Communicating security risks clearly and effectively to both technical teams and leadershipWhat They're Looking For- 8+ years of experience across application security, information security, platform security, DevSecOps, penetration testing, or related security disciplines- Strong understanding of AI and LLM security risks, including common failure modes and safety considerations- Experience automating security controls and testing directly within CI/CD pipelines- Hands-on experience with threat modeling frameworks such as STRIDE and operating in agile environments (Scrum, Kanban)- Proficiency in at least one programming language such as Python, Java, or .NET- Strong collaboration and communication skills, with the ability to explain security risks and tradeoffs to stakeholdersNice to Have- Experience with containerized and cloud-native environments (Kubernetes, containers, CI/CD, cloud providers)- Familiarity with AI platform components such as AI gateways, model orchestration layers, or custom API-based AI workflows- Awareness of AI and security regulatory frameworks such as NIST AI RMF, MITRE ATLAS, GDPR, or EU AI ActRelevant security certifications (CISSP, GIAC, CISA, or similar)CompensationBase salary ranges by location:- Southern California: $180,000-$285,000- San Antonio: $150,000-$235,000- New York: $190,000-$300,000