Threat Modeling and AI Security Lead

As a Threat Modeling and AI Security Lead at GSPANN, your role involves driving enterprise-wide threat modeling and AI security initiatives. Your focus will be on embedding secure design practices, governing AI risk, and enabling the safe adoption of modern AI and Large Language Model (LLM) platforms. **Role Overview:** You will be responsible for implementing threat modeling frameworks such as STRIDE, PASTA, and LINDDUN across the organization. Your duties include developing comprehensive threat models, collaborating with various teams to define security requirements, and operating SD Elements for managing secure design patterns and requirements. **Key Responsibilities:** - Implement STRIDE, PASTA, and LINDDUN threat modeling frameworks organization-wide. - Develop comprehensive threat models with architecture diagrams, trust boundaries, data flows, abuse scenarios, and risk scoring. - Collaborate with architects, developers, and product teams to define security requirements. - Operate SD Elements, track progress in Jira, and maintain documentation in Confluence. - Report on threat modeling adoption, coverage, and risk reduction outcomes. - Intake and triage AI and machine learning use cases based on risk and business impact. - Perform AI-focused threat modeling, including various scenarios like prompt injection and data exfiltration. - Define secure patterns for Retrieval-Augmented Generation (RAG) and agent-based systems. - Implement AI guardrails and enforce data security practices. - Conduct model and provider security assessments across different AI platforms. - Lead AI red teaming and adversarial testing activities. - Implement security gates, policy controls, governance, and monitoring strategies for AI-related incidents. **Qualifications Required:** - 10-12 years of experience in Application Security with expertise in threat modeling and AI security. - Hands-on experience with SD Elements, Jira, and Confluence. - Familiarity with AI and Large Language Model (LLM) platforms, including observability and monitoring tools. - Strong architecture literacy across microservices, APIs, web, and mobile applications. Feel free to apply if you have the required experience and skills to excel in this role at GSPANN in Gurugram or Hyderabad. As a Threat Modeling and AI Security Lead at GSPANN, your role involves driving enterprise-wide threat modeling and AI security initiatives. Your focus will be on embedding secure design practices, governing AI risk, and enabling the safe adoption of modern AI and Large Language Model (LLM) platforms. **Role Overview:** You will be responsible for implementing threat modeling frameworks such as STRIDE, PASTA, and LINDDUN across the organization. Your duties include developing comprehensive threat models, collaborating with various teams to define security requirements, and operating SD Elements for managing secure design patterns and requirements. **Key Responsibilities:** - Implement STRIDE, PASTA, and LINDDUN threat modeling frameworks organization-wide. - Develop comprehensive threat models with architecture diagrams, trust boundaries, data flows, abuse scenarios, and risk scoring. - Collaborate with architects, developers, and product teams to define security requirements. - Operate SD Elements, track progress in Jira, and maintain documentation in Confluence. - Report on threat modeling adoption, coverage, and risk reduction outcomes. - Intake and triage AI and machine learning use cases based on risk and business impact. - Perform AI-focused threat modeling, including various scenarios like prompt injection and data exfiltration. - Define secure patterns for Retrieval-Augmented Generation (RAG) and agent-based systems. - Implement AI guardrails and enforce data security practices. - Conduct model and provider security assessments across different AI platforms. - Lead AI red teaming and adversarial testing activities. - Implement security gates, policy controls, governance, and monitoring strategies for AI-related incidents. **Qualifications Required:** - 10-12 years of experience in Application Security with expertise in threat modeling and AI security. - Hands-on experience with SD Elements, Jira, and Confluence. - Familiarity with AI and Large Language Model (LLM) platforms, including observability and monitoring tools. - Strong architecture literacy across microservices, APIs, web, and mobile applications. Feel free to apply if you have the required experience and skills to excel in this role at GSPANN in Gurugram or Hyderabad.