Role Description We are seeking a forward-thinking and deeply technical AI Security Architect to lead our efforts in securely harnessing the power of Artificial Intelligence. As the AI Security Architect, you will be responsible for designing, implementing, and managing the security posture for all AI and Machine Learning initiatives across the organization. This is a pivotal role designed for an expert who is passionate about building secure AI frameworks from the ground up. You will be the go-to authority for all matters related to AI security, working across departments to embed security into our AI strategy and operations. Key Responsibilities - Collaborate directly with the IT & Development teams to design and integrate advanced AI security tooling at the application level. - Take a leading role in enhancing the security capabilities of our flagship in-house application, "Enforcer," by leveraging cutting-edge AI technologies. - Partner with our Development teams to establish a secure AI development lifecycle. - Assist in the evaluation, selection, and secure configuration of AI/ML tools, libraries, and platforms to empower our developers while maintaining a robust security posture. - Act as the central point of contact for vetting and suggesting secure AI solutions for business units across the entire organization. - Develop and maintain a curated portfolio of approved AI tools and services that align with our security standards and business objectives. - Stay at the forefront of the rapidly evolving AI landscape, including new technologies, emerging threats, and changing regulatory requirements (e.g., GDPR, CCPA as they relate to AI). - Provide regular updates and strategic recommendations to leadership on AI-related security matters. - Manage and optimize our TPRM platform. - Leverage the platform to establish and streamline a comprehensive AI vendor assessment process, creating clear requirements for onboarding new AI partners and solutions. - Contribute to the daily operations and strategic initiatives of the broader Information Security team. - Assist in incident response, threat modeling, and security architecture reviews as needed. Qualifications - Bachelor’s degree in computer science, Information Security, or a related field. - 5-7+ years of experience in a senior information security role. - Demonstrable experience working within the Microsoft Azure ecosystem, including securing data services like Azure Data Lake Storage, Azure Databricks, and Azure Machine Learning. - Deep understanding of the security challenges and controls for Large Language Models (LLMs), including prompt injection, data poisoning, and model theft. - Proven experience working in a dynamic business environment, particularly within a company undergoing a significant technological transformation. - Strong understanding of secure software development lifecycle (SDLC) principles. Requirements - Practices and adheres to EnableComp’s Core Values, Vision and Mission. - Engineer, implement and monitor security measures for the protection of computer systems, networks and information. - Identify and define system security requirements. - Experience managing servers, particularly virtualized environments. - Ability to work well with team members to produce results. - Excellent communication skills, utilized to collaborate both within IT and across all functions of the company to drive IT security initiatives. - Excellent mentoring and coaching skills to assist in training staff on security directives. - Design computer security architecture and develop detailed cyber security designs. - Prepare and document standard operating procedures and protocols. - Problem solving skills and ability to work under pressure. - Advises senior management by identifying critical security issues; recommending risk-reduction solutions. - Solid understanding of HIPAA and applicable compliance frameworks (SOC2, HITRUST). - Strong project management and technical troubleshooting ability. - Strong writing/documentation skills necessary. - Ability to articulate security-related concepts to a broad range of technical and non-technical staff. - Ability to work on larger projects as well as balance day to day requirements. Benefits - EnableComp is an Equal Opportunity Employer M/F/D/V. - All applicants will be considered for this position based upon experience and knowledge, without regard to race, color, religion, national origin, sexual orientation, ancestry, marital, disabled or veteran status. - We are committed to creating and maintaining a workforce environment that is free from any form of discrimination or harassment. - EnableComp recruits, develops and retains the industry's top talent. - We believe that investing in our employees is the key to our success, and we are dedicated to providing them with the tools, resources, and support they need to thrive and grow their career here.

• Responsible for designing, implementing, and overseeing advanced security architectures that protect the organization’s systems, data, and infrastructure. • Works closely with SOC analysts, incident responders, engineering teams, and leadership to ensure the security operations environment is resilient, scalable, and aligned with business and compliance requirements.

• Detect, investigate, and respond to security threats across endpoint and server environments • Improve endpoint visibility and security posture using modern tools and automation • Lead and support incident response activities, including investigation and remediation • Automate repeatable tasks for alerting, reporting, and risk reduction • Partner with IT teams to enhance patching, vulnerability management, and system hardening • Identify, prioritize, and remediate vulnerabilities across a hybrid environment • Monitor systems and networks for suspicious activity or unauthorized access • Contribute to security standards, documentation, and continuous improvement initiatives

• Partner with leaders, product owners, and engineering teams to identify, assess, and prioritize information security risks, translating technical threats into business impact and actionable mitigation strategies. • Serve as the primary security point of contact, providing strategic guidance on security architecture, secure-by-design principles, threat modeling, and risk acceptance decisions for new products, features, and technology investments. • Lead security risk assessments for major business initiatives & projects, M&A activities, third-party integrations, and cloud migrations, leading certifications (SOC 2, PCI-DSS), regulatory & client requirements and internal security policies. • Drive the implementation and continuous improvement of security controls, governance frameworks, and KPIs/KRIs, reporting on the security posture of business units to executive leadership and relevant risk committees. • Champion security awareness and culture across business units by leading training initiatives, tabletop exercises, and incident response simulations, while also supporting real incident response coordination between business stakeholders and the central security teams.