Technical Architect
Indexed description
- Act with urgency, accountability, and purpose
- Deliver high quality work with consistency and pride
- Collaborate effectively and elevate those around them
- Focus on outcomes that drive impact and growth
The Job
- Own and drive the end-to-end application security strategy, including design reviews, threat modelling, and secure SDLC integration across engineering teams.
- Lead an AI-augmented red team program — designing adversarial scenarios that simulate AI-generated attacks (LLM prompt injection, adversarial ML, AI-assisted phishing, synthetic exploit generation) and translating findings into hardening roadmaps.
- Architect and maintain an AI-driven threat assessment framework to continuously identify, prioritize, and remediate vulnerabilities across web, mobile, API, and cloud-native applications.
- Define and govern counter measures against AI-generated attacks, including detection pipelines, model-aware WAF policies, and runtime application self-protection (RASP) strategies.
- Perform and oversee advanced application penetration testing and dynamic/static analysis (DAST/SAST) with a focus on high-complexity environments.
- Collaborate with product, DevOps, IT and platform engineering to embed security guardrails at every stage of CI/CD pipelines — shift-left and shift-everywhere.
- Mentor and guide a team of security engineers; establish technical standards, playbooks, and review processes.
- Stay ahead of emerging threat intelligence, particularly adversarial AI research, and adapt defensive strategies accordingly.
- Lead collaborative Purple Team exercises to the next level, leveraging AI to provide a wider coverage against blue team defenses, with real-time feedback loops to identify detection gaps.
- Facilitate structured debrief sessions after each exercise, driving measurable improvements in SIEM rules, EDR coverage, alert fidelity, and incident response runbooks.
- Bachelor’s degree in computer science, Information Security, or a related field.
- Minimum of 10+ years of experience in Application Security is a must.
- Proven track record owning application security programs in a complex, multi-stack enterprise environment.
- Deep, hands-on experience leveraging AI/ML tooling both offensively (red teaming) and defensively (anomaly detection, AI-powered SIEM correlation).
- Demonstrated ability to design and execute AI-specific attack simulations — prompt injection, data poisoning, model inversion — and build mitigations.
- Strong understanding of modern application stacks: containerized microservices, serverless, GraphQL APIs, OAuth 2.0 / OIDC flows.
- Experience integrating security tooling (SAST, DAST, SCA, secrets scanning) into CI/CD pipelines.
- Lead collaborative Purple Team exercises with AI.
- Work closely with the SOC, threat intelligence, and incident response teams to ensure purple team findings directly feed into defensive improvements.
- Evaluate and deploy purple team platforms (e.g., Safe Breach or custom automation) to scale exercise frequency and reporting.
- Guide and upskill red and blue team members in purple teaming methodology — building a culture of continuous adversarial validation.
- Understanding of threat intelligence sources and risk management frameworks (e.g., NIST, CVSS).
- Strong knowledge of network and application security, as well as common vulnerabilities and attack vectors.
- Strong knowledge of OWASP Top 10 and secure coding practices
- Experience with SAST, DAST, IAST, and software composition analysis (SCA)
- Secure SDLC and threat modeling (e.g., STRIDE, PASTA)
- Knowledge of LLM attack vectors
- Adversarial ML
- AI red teaming
- Prompt injection
- Experience and hands on with Purple Teaming, ATT&CK mapping
- VECTR / Picus
- Debrief facilitation
- Detection tuning.
- Have worked on Zero trust
- API gateway security
- Cloud-native
- Microservices
- Hands-on experience on Burp Suite Pro
We Will
- Provide the will: opportunity to grow and develop your career
- Offer an inclusive environment that encourages diverse perspectives and ideas
- Deliver challenging and unique opportunities to contribute to the success of a transforming organization
- Offer comprehensive benefits globally (PB Benefits and Wellbeing Programs)
All interested individuals must apply online.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search