We are seeking an experienced Chatbot Security Assessment Lead to join our team. This position is focused on performing comprehensive security assessments for AI-powered chatbots (LLM/RAG-based). The role will primarily involve reviewing chatbot security architectures, conducting threat modeling exercises, and performing detailed vulnerability assessments to ensure the chatbots are secure and resilient to potential threats.
Key Responsibilities:
- Security Architecture Review: Review and evaluate the security design and architecture of AI-powered chatbots, ensuring they align with best practices and industry standards.
- Threat Modeling: Perform threat modeling exercises to identify potential security threats, vulnerabilities, and risks associated with chatbot platforms.
- Vulnerability Assessment: Conduct thorough vulnerability assessments, identifying security flaws in the chatbot code, APIs, integration points, and underlying infrastructure.
- Security Testing: Execute penetration testing and other security tests on the chatbot systems, focusing on API security, data protection, and potential attack vectors.
- Collaboration: Work closely with development, AI, and QA teams to understand the chatbot’s functionality, ensuring a comprehensive security assessment. Provide feedback and recommend security improvements.
- Documentation & Reporting: Produce detailed reports documenting security findings, risk analysis, and recommended remediation steps. Present findings to internal stakeholders and, if required, clients.
- Ongoing Monitoring: Stay up to date on emerging security threats, vulnerabilities, and trends in AI/Chatbot technologies and apply this knowledge to continuously improve the security posture of chatbot platforms.
- Compliance & Regulatory Review: Ensure that chatbots comply with relevant security regulations, such as GDPR, HIPAA, and others where applicable.
Skills & Qualifications:
- 7+ years of experience in security assessments, vulnerability management, and penetration testing.
- Strong knowledge of AI-powered systems, particularly LLM and RAG-based chatbots.
- Experience with threat modeling techniques and methodologies.
- Proficiency in security testing tools and frameworks, including API security and penetration testing tools.
- Familiarity with chatbot platforms, cloud infrastructure, and application security standards.
- Excellent understanding of OWASP Top 10 and other security frameworks and standards.
- Experience in identifying and mitigating risks associated with chatbot integrations, APIs, and data handling.
- Strong communication skills for presenting findings and working collaboratively with other teams.
Preferred:
- Experience working with security automation tools.
- Certifications such as CISSP, CEH, or relevant AI security certifications.
- Familiarity with regulatory frameworks and standards related to chatbot security (GDPR, CCPA, etc.).
Job Type: Contract
Pay: From $45.00 per hour
Schedule:
Experience:
- cloud-based infrastructures i: 5 years (Required)
- performing security assessments and vulnerability management: 5 years (Required)
- threat modeling techniques and methodologies: 5 years (Required)
Work Location: Remote
