• Provide executive-level cybersecurity advisory services, including governance, risk management, and strategic planning • Establish and maintain cybersecurity governance structures, roadmaps, and reporting cadence • Lead enterprise risk management activities, including risk register development, tracking, and executive reporting • Support compliance and framework alignment (NIST CSF, NIST SP 800-171, CMMC, SOC 2, ISO 27001 as applicable) • Guide CMMC readiness efforts, including coordination of documentation, audit preparation, and assessment support • Provide executive reporting, dashboards, and strategic recommendations to support decision-making • Advise on security operations, vulnerability management, and incident response governance • Support cybersecurity investment planning, tool selection, and vendor evaluation • Facilitate communication across technical teams, leadership, and external stakeholders • Collaborate with delivery teams (e.g., Cyber Analysts, Project Managers) to ensure coordinated execution

• Provide comprehensive and diverse range of risk management expertise to business leaders • Lead and support the implementation of risk frameworks and management activities • Advise on execution strategy and lead the development of functional programs • Review and challenge risk assessments and control evaluations • Conduct thematic reviews into emerging risk areas and provide oversight

• Providing T3 operational ownership for Network & Security services: resolving complex incidents, driving RCA and remediation across the full network/security stack • Ensuring operational readiness for network/security changes: monitoring/alerting, validation steps, rollback strategies, runbooks and maintenance procedures • Supporting compliance-relevant operational controls (logging/monitoring evidence, access enforcement patterns, vulnerability handling coordination) • Coordinating with platform and Kubernetes teams to resolve cluster and application impacts caused by network/security constraints • Executing and improving standard operational procedures through automation to reduce toil and improve MTTR and stability • Monitoring system health, performance metrics and service availability across multi-tenant environments • Identifying, analysing and resolving incidents to minimise service disruption, and triggering RCA and corrective actions • Implementing monitoring and logging strategies to support audit and compliance requirements • Performing routine security scans and remediating identified vulnerabilities

Role Description We are seeking a forward-thinking and deeply technical AI Security Architect to lead our efforts in securely harnessing the power of Artificial Intelligence. As the AI Security Architect, you will be responsible for designing, implementing, and managing the security posture for all AI and Machine Learning initiatives across the organization. This is a pivotal role designed for an expert who is passionate about building secure AI frameworks from the ground up. You will be the go-to authority for all matters related to AI security, working across departments to embed security into our AI strategy and operations. Key Responsibilities - Collaborate directly with the IT & Development teams to design and integrate advanced AI security tooling at the application level. - Take a leading role in enhancing the security capabilities of our flagship in-house application, "Enforcer," by leveraging cutting-edge AI technologies. - Partner with our Development teams to establish a secure AI development lifecycle. - Assist in the evaluation, selection, and secure configuration of AI/ML tools, libraries, and platforms to empower our developers while maintaining a robust security posture. - Act as the central point of contact for vetting and suggesting secure AI solutions for business units across the entire organization. - Develop and maintain a curated portfolio of approved AI tools and services that align with our security standards and business objectives. - Stay at the forefront of the rapidly evolving AI landscape, including new technologies, emerging threats, and changing regulatory requirements (e.g., GDPR, CCPA as they relate to AI). - Provide regular updates and strategic recommendations to leadership on AI-related security matters. - Manage and optimize our TPRM platform. - Leverage the platform to establish and streamline a comprehensive AI vendor assessment process, creating clear requirements for onboarding new AI partners and solutions. - Contribute to the daily operations and strategic initiatives of the broader Information Security team. - Assist in incident response, threat modeling, and security architecture reviews as needed. Qualifications - Bachelor’s degree in computer science, Information Security, or a related field. - 5-7+ years of experience in a senior information security role. - Demonstrable experience working within the Microsoft Azure ecosystem, including securing data services like Azure Data Lake Storage, Azure Databricks, and Azure Machine Learning. - Deep understanding of the security challenges and controls for Large Language Models (LLMs), including prompt injection, data poisoning, and model theft. - Proven experience working in a dynamic business environment, particularly within a company undergoing a significant technological transformation. - Strong understanding of secure software development lifecycle (SDLC) principles. Requirements - Practices and adheres to EnableComp’s Core Values, Vision and Mission. - Engineer, implement and monitor security measures for the protection of computer systems, networks and information. - Identify and define system security requirements. - Experience managing servers, particularly virtualized environments. - Ability to work well with team members to produce results. - Excellent communication skills, utilized to collaborate both within IT and across all functions of the company to drive IT security initiatives. - Excellent mentoring and coaching skills to assist in training staff on security directives. - Design computer security architecture and develop detailed cyber security designs. - Prepare and document standard operating procedures and protocols. - Problem solving skills and ability to work under pressure. - Advises senior management by identifying critical security issues; recommending risk-reduction solutions. - Solid understanding of HIPAA and applicable compliance frameworks (SOC2, HITRUST). - Strong project management and technical troubleshooting ability. - Strong writing/documentation skills necessary. - Ability to articulate security-related concepts to a broad range of technical and non-technical staff. - Ability to work on larger projects as well as balance day to day requirements. Benefits - EnableComp is an Equal Opportunity Employer M/F/D/V. - All applicants will be considered for this position based upon experience and knowledge, without regard to race, color, religion, national origin, sexual orientation, ancestry, marital, disabled or veteran status. - We are committed to creating and maintaining a workforce environment that is free from any form of discrimination or harassment. - EnableComp recruits, develops and retains the industry's top talent. - We believe that investing in our employees is the key to our success, and we are dedicated to providing them with the tools, resources, and support they need to thrive and grow their career here.