Product Security Specialist

As a Specialist in AI Security Architecture & AISDL at GlobalLogic, your role involves owning the AI security reference architecture for LLM apps, RAG pipelines, agent frameworks, and MCP servers in Azure/AWS. You will also be responsible for building and operationalizing an AI Security Development Lifecycle (AISDL) integrated into SDLC/DevSecOps. Your key responsibilities include:

• Leading AI threat modeling and producing actionable outputs such as abuse cases, trust boundaries, mitigations, and test plans. - Defining and assisting in implementing guardrails for AI / LLM implementations and MCP server security standards. - Creating reusable secure patterns and templates for MCP servers, performing deep security reviews, and validating security requirements. - Planning and executing AI security pen tests, building an AI adversarial test harness, and producing clear pen-test deliverables. - Defining and implementing AI provenance for AI-assisted code and AI-generated artifacts, integrating provenance and policy signals, and defining security acceptance criteria. - Integrating AI security checks into CI/CD using GitHub Actions, driving security automation and standardization, and defining production monitoring requirements for AI systems. In addition to the above responsibilities, as a Specialist, you should have the following qualifications and experience:
• Bachelors degree in computer science, Engineering, or equivalent experience. - 812+ years of hands-on product security experience including penetration testing, application/product/cloud security, and/or offensive security. - 3+ years securing or testing LLM/GenAI systems, practical experience with AI/ML, and proven experience testing mobile apps and modern web/API/cloud services. - Strong knowledge of common vulnerability classes and mitigation techniques, hands-on experience with pentest tooling, and familiarity with secure coding principles and cloud platforms. - Excellent verbal and written communication skills, able to produce clear technical reports and remediation guidance. Preferred qualifications include relevant certifications such as OSCP, OSWE, CISSP, and experience with security automation, CI/CD integration, and global pentest program management. GlobalLogic offers a culture of caring, continuous learning and development opportunities, interesting and meaningful work, balance, flexibility, and a high-trust organization where integrity is key. As a trusted digital engineering partner, GlobalLogic collaborates with clients to transform businesses and redefine industries through intelligent products, platforms, and services. As a Specialist in AI Security Architecture & AISDL at GlobalLogic, your role involves owning the AI security reference architecture for LLM apps, RAG pipelines, agent frameworks, and MCP servers in Azure/AWS. You will also be responsible for building and operationalizing an AI Security Development Lifecycle (AISDL) integrated into SDLC/DevSecOps. Your key responsibilities include: