AI Application Security Architect

Position: AI Application Security Architect

Location: Boston, MA

Hybrid Onsite: 3 days a week (Tue, Wed, Thurs)

Duration: 12 Months + Contract

2^nd Round Interview will be Onsite- face to face  

Summary:

• We are seeking a AI Security AppSec Architect to assist in the strategic evaluation and secure implementation of our AI Agent Framework.
• As AI adoption accelerates across our investment and research teams, this role will be pivotal in ensuring our systems remain secure, resilient, and compliant.
• You will combine high-level architectural oversight—specifically evaluating new and emerging AI technologies—with hands-on engineering.
• Financial Services industry domain is required  

Qualifications:

• 5+ years in Cloud Security/Architecture with deep hands-on Azure platform experience.
• Hands-on experience with Azure AI Services, Azure OpenAI, and Azure AI Foundry (or similar platforms like AWS SageMaker).
• Expert-level understanding of Microsoft Entra ID, Service Principals, and Managed Identity in a complex enterprise environment.\
• Deep familiarity with Model Context Protocol (MCP) and its implications for data isolation and session security.\
• Strong grasp of RAG (Retrieval-Augmented Generation) patterns and vector database security. Security Implementation & Strategy
• Proven track record of implementing Zero Trust controls in financial services or cloud-native environments.
• Automation: Experience with Infrastructure as Code (Terraform, Bicep) to codify security guardrails.
• Threat Assessment: Familiarity with the OWASP Top 10 for LLMs and AI-specific vulnerability scanning.
• Proactively evaluate new AI tools, frameworks, and LLM providers to assess their security posture and suitability for a highly regulated investment environment.
• Test and document sophisticated integration approaches with Azure Key Vault, Entra ID, and Managed Identities.
• Evaluate the security capabilities of Azure AI Foundry, M365 Copilot Studio, and the Microsoft Graph API against the organization’s compliance standards.
• Implement advanced logging, auditing, and monitoring for AI agent telemetry to ensure visibility into autonomous actions. Governance & Standards Development
• Translate complex security architectures into actionable implementation guides for developers and investment tech teams.
• Design and validate secure architectural patterns for AI agent integration within the organization’s ecosystem, ensuring data privacy and IP protection.

Preferred Qualifications:

• Certifications: Azure Security Engineer Associate, Azure AI Engineer Associate, or CISSP/CCSP.