Senior Application Security Architect

At JFrog, we’re ​​running the software that runs the world - and we want you along for the ride. This is a special place with a unique combination of brilliance, spirit and just all-around great people. Here, if you’re willing to do more, your career can take off. And since software plays a central role in everyone’s lives, you’ll be part of an important mission. Thousands of customers, including the majority of the Fortune 100, trust JFrog to manage, accelerate, and secure their software delivery from code to production — a concept we call “liquid software”. Wouldn't it be amazing if you could join us on our journey?

The JFrog CSO Security team is looking for an experienced and highly skilled Senior Application Security Architect to join our team. In this role, you will be responsible for leading the security architecture for JFrog products, ensuring robust security measures are integrated into our design and development processes. You will work closely with cross-functional teams to identify and mitigate security risks while promoting best practices across the organization.

As a Senior Application Security Architect at JFrog you will...

• Lead the design and implementation of security architecture across our product lines, emphasizing application security and threat modeling
• Conduct security reviews for product designs, ensuring compliance with industry standards and best practices
• Assess and address security concerns within the CI/CD pipeline, particularly in GitHub environments
• Provide deep expertise in supply chain security and risk management strategies
• Collaborate with engineering teams to ensure secure development practices and address vulnerabilities
• Design and implement security measures for AI applications, particularly focusing on large language model (LLM) flows
• Stay up-to-date with emerging security threats and trends, and recommend security enhancements as needed
• Conduct training and workshops to promote a strong security culture within the organization

To be a Senior Application Security Architect at JFrog you need…

• Minimum of 7 years of experience in application security, with a strong background in threat modeling and security architecture
• Advantage: Proven experience leading security initiatives for AI applications, particularly in LLM environments
• Proficiency in one or more programming languages such as Java, Node.js, Go, or Python
• Advantage: Experience with cloud platforms including AWS, GCP, and Azure, with a focus on implementing security best practices in K8S and Docker
• Excellent analytical and problem-solving skills, with the ability to communicate complex security concepts to non-technical stakeholders
• Relevant certifications (e.g., CISSP, CISM, CEH) are a plus