Jobs · Information Technology

AI Application Security Analyst - AppSec & ML Security

PURE Insurance · United States · 3 wk ago
RemoteRemoteInformation Technology$45k–$100k/yrFull-time

About the role

We are seeking an AI Application Security Analyst to secure modern applications, including those leveraging machine learning and AI technologies. This role focuses on identifying, assessing, and mitigating vulnerabilities across the application lifecycle, with particular emphasis on AI-enabled applications and services.

What you'll do

  • Perform application security assessments using SAST, DAST, and interactive testing tools
  • Identify, triage, and prioritize vulnerabilities across web, API, and microservices architectures
  • Integrate security testing into CI/CD pipelines (DevSecOps)
  • Assess security risks in AI/ML-enabled applications, including model exposure and inference endpoints
  • Identify vulnerabilities such as adversarial inputs, model abuse, and data poisoning
  • Secure AI APIs, plugins, and third-party integrations
  • Implement and tune WAF, RASP, and API security controls
  • Conduct threat modeling and secure design reviews for applications and AI use cases
  • Assess and harden identity and access flows ensuring least privilege
  • Partner with developers to remediate vulnerabilities and improve secure coding practices
  • Monitor and respond to application-layer security incidents

What we are looking for

  • 3–6+ years of experience in Application Security or Product Security
  • Hands-on experience with SAST, DAST, IAST tools
  • Strong knowledge of OWASP Top 10 vulnerabilities
  • Experience securing APIs and microservices
  • Experience with modern authentication and authorization protocols (OAuth 2.0, OpenID Connect, SAML)
  • Basic understanding of AI/ML systems
  • Security certification or willingness to obtain within 6 months

Preferred Qualifications

  • Experience with ML frameworks is a plus
  • Familiarity with AI threat models
  • Experience with WAF, RASP, or API security solutions
  • Experience with cloud platforms (AWS, Azure, GCP)
  • Scripting skills (Python, Bash)

Success Looks Like

Reduced application vulnerabilities
Faster remediation cycles
Strong runtime protection
Secure AI feature deployment
Improved developer security practices
Operational Expectations:

  • Participate in on-call rotation
  • Provide after-hours and weekend support
  • Respond to security alerts and incidents
  • Collaborate with teams during incident response

Pay

The base salary for this role can range from $45,000 to $100,000 based on a full-time work schedule. An individual’s ultimate compensation will vary depending on job-related skills and experience, geographic location, alignment with market data, and equity among other team members with comparable experience.

Schedule

To ensure a successful onboarding experience, all new hires must work onsite at one of our offices during their first week of employment. Candidates should apply only if they are able to meet this requirement.

Similar jobs

Security Architect - AI AppSec

Sovereign Care Services LLPBrownsburg, IN· 3 wk ago
Information Technology$90–$100/hrapply on sovereign-care-services-1.careerplug.com