Senior Architect – GenAI Application Security

Vanguard•Malvern, PA

2d•Hybrid

About The Position

The Senior Security Architect – GenAI Application Security will lead the design and evolution of Vanguard’s next‑generation application security architecture, leveraging Generative AI and agentic security models to detect, analyze, and mitigate vulnerabilities across modern software systems. This role sits at the intersection of application security, AI/ML security, platform engineering, and enterprise architecture, and is responsible for defining scalable security patterns for SAST, SCA, API security, and Vanguard‑built agentic applications. The architect will partner closely with DevSecOps, CICD Pipeline teams, Platform teams, AI/ML teams, and enterprise security leadership to embed intelligent, automated security controls across the SDLC.

Requirements

Bachelor’s degree in Computer Science, Engineering, or related field; equivalent practical experience considered.

Responsibilities

Define and own the enterprise architecture for GenAI‑enabled application security capabilities across SAST, SCA, API security, Containers and runtime analysis, ensuring alignment with Vanguard security standards and risk appetite.
Design and implement agentic security capabilities to autonomously analyze source code, dependencies, APIs, and runtime behavior to identify exploitable vulnerabilities beyond traditional security tooling.
Establish reference architectures and secure design patterns for AI‑assisted code analysis, dependency graph analysis, and API threat detection, including guidance for custom-built Vanguard agentic applications.
Architect GenAI‑powered solutions to augment or replace traditional SAST, SCA, and API security tools.
Define approaches for context‑aware vulnerability prioritization, correlating exploitability, runtime exposure, and business impact.
Recommend and lead the evaluation and secure integration of AI capabilities and tools for Vanguard application stack.
Establish security architecture standards for Vanguard‑developed GenAI and agentic platforms, including: Secure orchestration and tool invocation.
Enable AppSec teams by recommending, evaluating, and architecting MLSecOps capabilities that improves security posture of ADLC (Agentic Application Development LIfecylce)
Partner with engineering teams to embed security‑by‑design controls into developer workflows, agent workflows, decision loops, and autonomous execution paths.
Define how GenAI‑based AppSec capabilities integrate seamlessly into CI/CD pipelines, developer platforms, and runtime environments with minimal developer friction.
Provide architectural guidance for secure onboarding of applications into AppSec platforms, including API gateways, scanning services, and orchestration layers.
Ensure security patterns are codified, reusable, and discoverable for engineering teams
Translate architectural decisions into clear risk narratives for senior leadership, audit, and regulatory stakeholders.
Define metrics and architectural KPIs to measure coverage, effectiveness, and maturity of GenAI‑enabled AppSec controls.
Act as a thought leader and mentor for AppSec engineers, security architects, and platform teams, elevating overall security architecture maturity across Vanguard.
Stay ahead of emerging threats in AI/ML security, adversarial attacks, and software supply chain risk, continuously evolving Vanguard’s security architecture accordingly.