AppSec & AI Security Architect Jobs

Hewlett Packard Enterprise

Location:
India, Bangalore

Category:
IT - Software Development

Contract Type:
Not provided

Salary:

Not provided

Save Job

Apply Position

Job Description:

Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. HPE’s Cybersecurity organization is where innovation meets trust. This role involves defining secure application architecture patterns, embedding security into the software development lifecycle, conducting architecture risk assessments, and supporting responsible integration of AI technologies.

Job Responsibility:

Defining and maintaining secure application architecture patterns, reference designs, and reusable components across enterprise and cloud-native ecosystems
Performing architecture risk assessments and threat modeling for major application programs, APIs, and platforms
Leading adoption of Web Application and API Protection (WAAP) controls and Application Security Posture Management (ASPM) tools to enable continuous risk visibility and compliance
Embedding security controls in SDLC and CI/CD pipelines, including SAST, DAST, SCA, IaC, and container scanning
Designing and governing security for Kubernetes-based and containerized workloads, including service mesh and runtime protection
Developing and enforcing standards for API and microservices security, including authentication, authorization, and token lifecycle management (OAuth2, OIDC, mTLS)
Establishing secure-by-default configurations for CI/CD and GitOps pipelines (e.g., ArgoCD, Flux, Jenkins, GitHub Actions)
Partnering with engineering teams to design secure cloud-native and hybrid architectures across AWS, Azure, and GCP
Providing security guidance for applications leveraging AI/ML or LLM capabilities, such as input/output sanitization, model integrity, and data protection
Establishing application security KPIs, governance models, and maturity metrics
Contributing to secure SDLC frameworks, DevSecOps enablement, and developer awareness programs
Mentoring engineers, developers, and junior architects in secure coding and secure design practices.

Requirements:

Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or Engineering
10+ years of experience in application or product security architecture, preferably in large enterprise or SaaS environments
Proven expertise in secure application and API design, cloud-native security, and DevSecOps enablement
Proven expertise in secure application and API design, WAAP, and ASPM solutions
Strong experience with Kubernetes (K8s), containerization, and service mesh architectures
Hands-on experience implementing or governing GitOps pipelines and policy-as-code frameworks (e.g., OPA/Gatekeeper, Kyverno)
Knowledge of Zero Trust, data protection, and modern identity standards (OIDC, OAuth2)
Familiarity with AI/ML security risks, model governance, and responsible AI adoption
Deep knowledge of OWASP ASVS, NIST CSF, ISO 27034, and CIS Controls
Desired Certifications: CISSP, CSSLP, SABSA, CCSP, CKA (Certified Kubernetes Administrator), or CCSK.

Nice to have:

Desired Certifications: CISSP, CSSLP, SABSA, CCSP, CKA (Certified Kubernetes Administrator), or CCSK
Familiarity with AI/ML security risks, model governance, and responsible AI adoption.

What we offer:

Health & Wellbeing
Personal & Professional Development
Unconditional Inclusion.

Additional Information:

Job Posted:
November 26, 2025

Employment Type:

Fulltime

Work Type:

On-site work

View All Jobs In This Company

Job Link Share:

AppSec & AI Security Architect