×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
AI Engineer Cybersecurity

Associate Director, AI & Application Security

Remote / Online - Candidates ideally in
Boston, Suffolk County, Massachusetts, 02298, USA
Listing for: Vertex Pharmaceuticals, Inc
Full Time, Part Time, Remote/Work from Home position
Listed on 2026-06-06
Job specializations:
  • IT/Tech
    AI Engineer, Cybersecurity
Job Description & How to Apply Below
Position: Associate Director, AI & Application Security - HYBRID ROLE
Job Description

This is a hybrid position that requires 3 days a week in our Boston office

Vertex is seeking an Associate Director, AI & Application Security to lead security for AI-enabled applications, platforms, and services across the enterprise. This role is responsible for securing AI throughout the full lifecycle-from design and development to deployment and ongoing operations-including generative AI, agentic workflows, traditional machine learning, and AI embedded in enterprise applications.

This leader will help define how Vertex securely adopts and scales AI across Azure, AWS, and GCP, as well as third-party and foundation model platforms such as Microsoft Copilot / Azure OpenAI, Anthropic, Google Gemini, and AWS Bedrock. The role will partner closely with technical and business stakeholders to establish pragmatic guardrails, strengthen secure development practices, and reduce risk without slowing innovation.

The ideal candidate brings deep expertise in cloud security and application security, along with strong judgment, technical credibility, and the ability to influence decisions in fast-moving, evolving environments. This role also requires practical experience applying security and risk frameworks relevant to AI and modern application environments.

Key Duties and Responsibilities

* Lead AI and application security across the full lifecycle of AI-enabled systems, from design and development through deployment and operations.

* Define and evolve security standards, guardrails, and control expectations for AI systems used across Vertex.

* Apply and operationalize industry-recognized security frameworks and control models, including:

* NIST AI Risk Management Framework (AI RMF)

* NIST Cybersecurity Framework (CSF)

* OWASP Top 10

* OWASP Top 10 for LLM and Generative AI Applications

* Secure AI workloads and AI-enabled applications across cloud and SaaS environments, with emphasis on:

* policy enforcement

* data protection

* logging and telemetry

* monitoring and operational visibility

* Lead threat modeling and misuse-case analysis for AI systems, including risks such as:

* prompt injection and prompt abuse

* sensitive data leakage

* tool or action abuse

* unsafe outputs

* model misuse

* Define and mature AI guardrails, including monitoring, detection, logging, and misuse or negative testing practices.

* Establish secure development expectations for AI-enabled applications and services, including secure coding practices and appropriate separation of development and production environments.

* Build and lead application security testing practices for AI-enabled applications and supporting services, including SAST, DAST, automated scanning, and retesting processes.

* Partner with Cloud Security, Security Operations, Privacy, Legal, Data Science, and Engineering teams to align security controls with business, technical, and regulatory requirements.

* Influence architecture and platform decisions through practical, risk-based guidance that can scale with AI adoption.

* Communicate risks, tradeoffs, and recommendations clearly to both technical teams and senior leadership.

Knowledge and Skills

* Cloud security architecture and controls across Azure and AWS

* Familiarity with GCP security concepts and services

* Secure software development lifecycle (SDLC) practices

* Secure coding standards and code review practices

* SAST, DAST, automated security scanning, and remediation workflows

* OWASP Top 10 and common application and API security risks

* Familiarity with OWASP guidance for LLM/GenAI applications

* API security, identity and access management, secrets management, and service-to-service trust

* Logging, telemetry, monitoring, and detection for cloud-native environments

* Threat modeling and misuse-case analysis

* Familiarity with AI security risks, including:

* prompt injection

* data leakage

* model misuse

* tool or action abuse

* unsafe outputs

* policy enforcement

* Familiarity with AI platforms and providers such as:

* Microsoft Copilot / Azure OpenAI

* Anthropic

* Google Gemini

* AWS Bedrock

* emerging AI platforms and services

Education and Experience

* Bachelor's degree in Computer Science, Information Security, Engineering,…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search