Key skills
PythonAILLMAgenticSDLCCI/CDOWASP
About this role
Coforge is hiring an experienced professional to drive secure-by-design engineering for agent code and pipelines, while owning end-to-end vulnerability management for AI workloads. This role ensures that agentic AI solutions are developed, tested, and deployed securely without compromising speed and innovation.
Responsibilities:
- Embed SAST / DAST / SCA into agent CI/CD pipeline
- Build and maintain an AI/LLM software bill of materials (SBOM) capability
- Lead threat modeling for agents against the OWASP LLM Top-10 and Agentic Top-10
- Define and enforce vulnerability-management SLAs for AI workloads
- Establish secure-SDLC guardrails for maker and developer team
Requirements:
- 10+ Years' experience
- Strong application security background: SAST, DAST, SCA tooling and triage
- Threat modeling expertise; working knowledge of LLM/agent attack surfaces (prompt injection, tool abuse, data exfiltration)
- Familiarity with AI/LLM supply-chain risk and SBOM practices
- Secure SDLC and DevSecOps pipeline integration experience
- Scripting/automation skills (Python) for security tooling integration
- Relevant certifications (e.g., GWAPT, CSSLP, OSCP)