Threat Modeling & AI Security Lead – Gurugram – 5 to 12 Years Experience
Job Description
GSPANN Technologies, Inc is expanding its high-growth Security Organization and is seeking an experienced Threat Modeling & AI Security Lead to drive enterprise-level security initiatives.
This leadership role focuses on architect-level threat modeling, risk analysis, and securing AI/ML systems, including LLM and Generative AI environments. The ideal candidate will combine deep technical expertise with strategic risk mitigation capabilities to secure modern digital ecosystems.
Responsibilities:
- Lead threat modeling activities for enterprise architectures and complex systems
- Apply structured frameworks such as STRIDE and PASTA for architecture risk analysis
- Drive AI/ML and LLM security initiatives, including threat vector identification
- Define and implement secure SDLC practices across development teams
- Identify, assess, and mitigate architectural and application-level risks
- Collaborate with engineering, DevOps, and security teams to embed security by design
- Provide executive-level risk insights and remediation strategies
Job Requirements
• 5–12+ years of experience in cybersecurity, with strong expertise in threat modeling
• Hands-on experience with STRIDE, PASTA, or similar threat modeling frameworks
• Strong understanding of enterprise architecture risk analysis
• Practical knowledge of AI/ML security and LLM/Generative AI threat vectors
• Experience implementing Secure SDLC practices
• Strong ability to design and execute risk mitigation strategies
• Excellent analytical, documentation, and stakeholder communication skills
Preferred Qualifications
• Experience in AI governance and responsible AI security practices
• Exposure to cloud security architecture and DevSecOps models
• Industry-recognized certifications (CISSP, CCSP, or equivalent)
• Leadership experience in enterprise security programs
• To Apply: Send your updated CV
About the Company
GSPANN Technologies, Inc is a global technology and consulting organization delivering digital transformation and cybersecurity solutions. The company leads innovation across offensive security, AI security, application security, and cyber operations to protect modern enterprise ecosystems.
