Job Closed
This listing is no longer active.
AI Security Architect – Contract
Location
United States
Posted
138 days ago
Salary
0
Seniority
Lead
Job Description
AI Security Architect – Contract
66degrees
• Design and implement comprehensive AI security architecture, including governance frameworks, data protection controls, model security standards, and usage policies for enterprise AI systems • Collaborate with the AI business deployment team to establish security requirements and controls for AI applications, ensuring alignment between business objectives and security standards • Develop and enforce AI usage policies and security guardrails for employees, including guidelines for acceptable use of generative AI tools, prompt engineering security, and data sharing restrictions • Establish security standards and best practices for AI/ML development teams, covering model training security, data pipeline protection, API security, and secure model deployment • Conduct AI-specific threat modeling and risk assessments, identifying vulnerabilities such as prompt injection, data poisoning, model theft, adversarial attacks, and privacy leakage • Define data classification and handling requirements for AI systems, ensuring sensitive customer information and personally identifiable information are appropriately protected in training datasets and model outputs • Evaluate and recommend AI security tools and technologies, including data loss prevention for AI interactions, AI gateway solutions, model monitoring platforms, and security testing frameworks • Partner with compliance and legal teams to ensure AI implementations meet regulatory requirements including insurance industry regulations, data privacy laws, and emerging AI-specific legislation • Create security awareness training programs focused on AI risks, responsible AI usage, and secure development practices for different user personas across the organization • Develop incident response procedures specific to AI security events, including model compromise, data leakage, and unauthorized AI tool usage • Monitor the evolving AI security landscape and provide strategic guidance on emerging threats, vulnerabilities, and security best practices • Establish metrics and reporting frameworks to measure AI security posture and communicate risk to executive leadership
Job Requirements
- Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or related field; Master's degree preferred
- 8+ years of experience in information security with at least 3 years in security architecture roles
- Demonstrated experience designing security controls for AI/ML systems, including LLMs, generative AI platforms, or machine learning pipelines
- Deep understanding of AI security risks including prompt injection, model inversion, data poisoning, adversarial attacks, and privacy concerns in machine learning
- Strong knowledge of enterprise security frameworks and standards such as NIST CSF, ISO 27001, SOC 2, and data protection regulations including GDPR, CCPA
- Experience with cloud security architectures, particularly in AWS, Azure, or GCP environments where AI/ML workloads are deployed
- Familiarity with AI development tools and platforms such as OpenAI API, Azure AI Services, AWS SageMaker, or Google Vertex AI
- Excellent written and verbal communication skills with ability to translate technical security concepts to business stakeholders and executive leadership
- Relevant security certifications such as CISSP, CCSP, CISM, or specialized AI security certifications
- Experience in the insurance or financial services industry with understanding of regulatory requirements
- Hands-on experience with AI security tools such as AI firewalls, model monitoring solutions, or DLP platforms with AI capabilities
- Background in machine learning or data science with understanding of model training, evaluation, and deployment processes
- Knowledge of responsible AI principles, AI ethics frameworks, and fairness testing methodologies
- Experience building security awareness programs and training materials for technical and non-technical audiences
- Active participation in AI security communities, research contributions, or speaking engagements on AI security topics.
Benefits
- Health benefits
- Professional development opportunities
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Deploy and operate vulnerability scanning across our cloud infrastructure. Triage findings and drive remediation with engineering teams. • Lead security assessments for internal and customer security needs (e.g. SOC 2 Type II, ISO 27001, HIPAA audits). • Maintain vulnerability and remediation documentation for auditors. • Act as a liaison between product, engineering, compliance, and GTM to guide and prioritize the right security investments. • Perform penetration tests, tabletop exercises, DR testing, and incident response. • Manage endpoint security tooling as we scale; conduct audit log reviews and maintain visibility across our stack.
• Design, deploy, and operate next-generation firewall architectures across: • Core and regional data centers • Edge and modular deployments • GPU and high-value compute environments • Build and maintain firewall topologies including: • Centralized and distributed firewall models • Inline, routed, and transparent firewall deployments • Active/active and active/passive HA designs • Perform hands-on configuration of: • Firewall interfaces, zones, and virtual systems / VDOMs • Routing integration and asymmetric traffic handling • Validate firewall designs through testing, failover simulation, and performance benchmarking.
• Define the long-term vision and technical strategy for the secure development pipeline, ensuring alignment with the overall R&D and business objectives. • Oversee the unified strategy for our tooling ecosystem (GHAS, Wiz, Terra). You will ensure these tools act as automated checkpoints, providing fast, high-fidelity feedback loops for engineers. • Transform our vulnerability management from a "ticket queue" into a risk-based model. You will own the "Risk Acceptance" and "SLA Adherence" processes, ensuring timely focus on what matters. • Design the structure, incentives, and operational logistics for the Security Champions Program to democratize secure development across 80+ squads. • Move away from annual compliance videos to contextually relevant micro-trainings enabling our engineers to develop highly secure solutions. • Build and sustain deep, trust-based partnerships with Engineering leaders and individual contributors to embed security into the software development lifecycle. • Operationalize tools and ticketing pipelines to generate and maintain "Squad Health" scores. You will use data to drive accountability. • Define and track key performance indicators (SAST/SCA remediation rates, Cloud Security Posture scores, Time-to-Fix) to measure the effectiveness of the "Secure Paved Road" and report risk reduction to executive leadership. • Translate the Product Security vision into an actionable, multi-year strategy and operating plan. • Lead, mentor, and grow a team of high-performing Product Security Engineers, fostering a culture of ownership, accountability, and automation.
• Build into and improve the product by writing investigation flows, building integrations with security tools, and fixing bugs. • Evolve the investigation logic and pipelines to handle new classes of security alerts, balancing accuracy, performance, and maintainability • Contribute directly to our Python codebase while influencing architectural decisions and long-term product strategy • Review and analyze investigations performed by our AI to identify strengths, weaknesses, and opportunities for improvement, and then translate those insights into product enhancements. • Partner with GTM and customer success teams to influence technical direction, prioritize features, and ensure we’re solving the most impactful problems for defenders • Provide technical leadership and mentorship to other engineers • Periodically participate in a 24x7 on-call rotation
