AI Security Architect at Emergent Labs

Bengaluru, karnataka, India -

Full Time

Start Date

Immediate

Expiry Date

25 Jun, 26

Salary

0.0

Posted On

27 Mar, 26

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Security Architecture, AI Agent Pipelines, Cloud Infrastructure Security, Threat Modeling, Vulnerability Management, SAST, DAST, SCA, SDLC Security, Incident Response, SOC 2, ISO 27001, Python, JavaScript/TypeScript, SQL, AWS/GCP/Azure

Industry

technology;Information and Internet

Description

About Emergent Emergent builds autonomous coding agents that replace traditional software development by generating, testing, and deploying production applications directly from plain-language intent. Our systems run in production at global scale — 6.5M+ applications built by 6M+ users. We’ve raised $100M+, backed by Khosla Ventures, SoftBank, Google, Lightspeed, Prosus, Together, and Y Combinator. The team includes repeat founders, Olympiad medalists, IIT & IIM alumni, and leaders from Google, Amazon, and Dropbox. The Role Security at Emergent isn’t a checkbox — it’s a core engineering discipline. With 6M+ users generating and deploying real applications every day, our attack surface is unique. We’re looking for a Security Engineer who thinks like an attacker, builds like a product engineer, and operates with the urgency of a founder. You’ll own security across the full stack — from AI agent pipelines and cloud infrastructure to the applications our users generate and deploy at scale. What You’ll Do • Secure the AI-native stack end to end. Design, implement, and continuously improve security controls across AI agent pipelines, multi-tenant cloud infrastructure, APIs, and user-generated application environments. • Lead threat modelling & attack surface analysis. Proactively identify risks in new product features, infrastructure changes, and AI-generated code patterns. Catch vulnerabilities at design time, not after deployment. • Build & own vulnerability management. Run automated security scans (SAST, DAST, SCA), triage findings by exploitability and impact, drive remediation, and track resolution to closure. • Harden AI-generated application environments. Define and enforce sandboxing strategies, code execution boundaries, secret handling standards, and runtime security controls. • Drive security in the SDLC. Embed security tooling and review gates into CI/CD pipelines. Champion secure coding practices, conduct code reviews, and run internal red-teaming exercises. • Detect, respond & learn. Build detection coverage using cloud-native logging and SIEM tooling. Lead incident response — triage, contain, eradicate, and produce clear post-mortems. • Own compliance & trust. Maintain and mature security posture against SOC 2, ISO 27001, and cloud security benchmarks. Serve as technical point of contact for customer security reviews. What We’re Looking For • 8–12 years of hands-on security engineering experience in a fast-moving product or cloud environment. • Strong application security foundation — can read code (Python, JS/TS, SQL), identify vulnerabilities (OWASP Top 10, injection, auth flaws), and drive fixes with engineering teams. • Solid cloud security experience: AWS, GCP, or Azure — IAM, network security groups, secrets management, container security (Docker, Kubernetes). • Experience with SAST, DAST, SCA, secret scanning, and CSPM tooling across the development lifecycle.• Incident response experience — structured response from detection to post-mortem. • Excellent written and verbal communication — can explain a critical vulnerability to a non-technical founder and a detailed CVE to a senior engineer. • High ownership mindset: you see a gap and close it. Good to Have ■ Experience securing AI/ML systems — model APIs, prompt injection risks, LLM output validation, multi-tenant AI inference. ■ Familiarity with sandboxed code execution environments or container escape scenarios. ■ Hands-on red teaming or penetration testing experience. ■ Compliance background: SOC 2 Type II, ISO 27001, GDPR / data privacy. ■ Prior experience at a high-growth startup or infrastructure-heavy product company. What This Role Is Not – Not a compliance-only or checkbox security role. – Not removed from engineering — you’ll be deep in code, PRs, and architecture discussions. – Not slow-moving — we ship fast and you’ll need to keep pace while raising the security bar. Why Join Emergent • Own the security function at one of the fastest-growing AI companies in the world — real scope, real risk, real impact. • Work directly with founders and engineering leads on decisions affecting millions of users. • Competitive compensation, meaningful equity, and a front-row seat to the AI-native software revolution. • Fast learning, high ownership, and a clear path to defining enterprise-grade security at the frontier of AI. Let’s build the future of software — securely.

Responsibilities

The role involves securing the end-to-end AI-native stack, designing security controls across AI pipelines, cloud infrastructure, and user-generated applications. Responsibilities include leading threat modeling, owning vulnerability management through automated scanning, and driving security integration within the SDLC.