AI Application Security Architect

Intro

• At JFrog, we’re ​​running the software that runs the world - and we want you along for the ride. This is a special place with a unique combination of brilliance, spirit and just all-around great people. Here, if you’re willing to do more, your career can take off. And since software plays a central role in everyone’s lives, you’ll be part of an important mission. Thousands of customers, including the majority of the Fortune 100, trust JFrog to manage, accelerate, and secure their software delivery from code to production — a concept we call “liquid software”. Wouldn't it be amazing if you could join us on our journey?
• The JFrog CSO Security team is looking for an experienced and highly skilled AI Product Security Architect to join our team. In this role, you will lead the security architecture for JFrog products, with a specialized focus on our AI/ML offerings. You will ensure robust security measures are integrated into the product design and development lifecycle, working closely with cross-functional teams to identify and mitigate security risks while promoting best practices across the organization.
• Lead the design and implementation of security architecture across our product lines, covering general product security and threat modeling, with a core emphasis on AI/ML system security
• Conduct security reviews for product designs, ensuring compliance with evolving AI governance and industry standards
• Assess and address security concerns within the CI/CD and Agentic pipelines
• Provide deep expertise in supply chain security, including third-party AI model usage and risk management strategies
• Collaborate with engineering teams to ensure secure development practices and address vulnerabilities throughout the software and model development lifecycle
• Design and implement cutting-edge security measures for AI applications, focusing on Large Language Model (LLM) flows, securing prompts, responses, and fine-tuning data
• Stay up-to-date with emerging threats like adversarial attacks, model poisoning, and data leakage in AI systems, and recommend proactive security enhancements
• Conduct training and workshops to promote a strong security culture within the organization, particularly regarding Product and AI security best practices
• Minimum of 7 years of experience in application and/or product security, with a strong background in threat modeling and security architecture
• Proven experience leading security initiatives for AI applications, particularly in LLM environments
• Proficiency in one or more programming languages such as Java, Node.js, Go, or Python
• Experience with cloud platforms, including AWS, GCP, and Azure, with a focus on implementing security best practices in K8S and Docker
• Excellent analytical and problem-solving skills, with the ability to communicate complex security concepts to non-technical stakeholders
• Expertise in defining and implementing AI governance, including data privacy and ethical AI principles
• Relevant certifications (e.g., CISSP, CISM, CEH, CDPSE) are a plus