S&P Global - Phoenix, AZ
posted about 2 months ago
The Sr. Lead Application Security Engineer - Generative AI at S&P Global is a pivotal role within the S&P Ratings Security team, which is dedicated to safeguarding clients and users from modern security threats. This position is responsible for the development and implementation of security architecture and engineering best practices across S&P Ratings technology platforms. The successful candidate will provide security engineering and architecture consultation to enhance security in S&P Ratings Applications and Services, particularly focusing on Generative AI applications. This role is designed for a Director-level individual contributor who will collaborate with various teams, including Security, software development, Data science/LLM, QA, and Operations, to identify technical risks, evaluate critical failure points, and implement necessary security controls. The responsibilities include driving the Secure SDLC roadmap, developing security tooling, mentoring team members, and being a hands-on partner to development teams to ensure the delivery of innovative and secure applications. The candidate will also be tasked with performing threat modeling, secure code reviews, and vulnerability research, while providing guidance on security best practices in software development and cloud-native applications. This role requires a deep understanding of application security, web services security, and the security of Generative AI models, along with the ability to coach development teams on security disciplines and maintain knowledge of emerging technologies related to security architecture.