AI AppSec Engineer Lead

About the Role

AI Application Security Engineer Lead at Capital Group focuses on ensuring the security of custom and procured AI solutions and supporting the organization’s AI strategy.

• Collaborate with application teams to secure custom and outsourced AI solutions.
• Build and procure technical solutions to protect a diverse set of enterprise AI platforms.
• Work with platform engineering, security engineering, and risk teams to enable scalable, secure AI adoption.
• Provide mentoring, advice, and promotion of AI security principles across the organization.
• Implement technical safeguards in the AI Software Development Life Cycle (SDLC) and Machine‑Learning Operations (ML‑Ops), embedding automated security checks.
• Perform threat modeling of complex Agentic and AI systems, designing security requirements with developers, architects, and business stakeholders.
• Review code for security vulnerabilities in AI‑driven systems.
• Contribute thought leadership to Information Security policies and standards for AI.
• Serve as an AI/Agent subject‑matter expert for incidents and security reviews, and develop playbooks for AI‑related security incidents.

• 8+ years of experience in information security, application security, platform security, penetration testing, or related disciplines.
• Strong knowledge of security risks for Large Language Models and AI Agents (e.g., OWASP LLM Top
  10).
• 5+ years of experience automating security checks (SAST, SCA, DAST) into CI/CD pipelines.
• Extensive experience with threat‑modeling frameworks such as STRIDE and agile workflows (Scrum, Kanban).
• Proficiency in at least one programming language (Python, Java, or .NET).
• Strong partnership and communication skills, capable of articulating security risks to leadership.

• Knowledge of Kubernetes, containers, CI/CD, and cloud service providers.
• Familiarity with AI platform components (e.g., AI gateways such as Kong or Databricks Mosaic, model orchestration tools like Lang Chain or Llama Index).
• Understanding of AI regulatory frameworks, including NIST AI RMF, MITRE ATLAS, GDPR, and the EU AI Act.
• Information Security certifications such as CISSP, SANS GIAC, or CISA.

• Competitive base salary: $194,706–$311,530 in Charlotte, $226,893–$363,029 in Southern California, $240,519–$384,830 in New York.
• Annual performance bonus and company profitability bonus.
• Retirement plan with 15% company contribution of eligible earnings.
• Health, dental, and vision benefits from day one.
• Flexible work options and generous time‑away.
• Other benefits: matching charitable contributions, professional development resources, and annual grants for nonprofits.

Capital Group is an equal opportunity employer. We comply with all federal, state, and local laws that prohibit discrimination on the basis of race, religion, color, national origin, ancestry, sex, gender identity, pregnancy, childbirth, medical conditions, age, disability, marital status, sexual orientation, citizenship, HIV status, political activities, military status, victim of domestic violence, assault, stalking, or any other protected characteristic.