Lead AI Security Architect

This is a fully remote position, open to applicants in United States.

📋 Description

• Develop and implement security solutions that enable clients to securely utilize and manage Claude Enterprise.

• Evaluate current security, identity, data, cloud, and SaaS architectures, providing guidance on top-tier solutions for safeguarding enterprise AI tools across diverse industries.

• Perform thorough assessments of AI tools (e.g., Claude, Claude Enterprise), platform settings, data access behaviors, connector utilization, security measures, procedures, and personnel to offer well-informed recommendations based on your expertise in security engineering and AI governance.

• Create and enforce security measures for enterprise AI platforms, including SSO, SCIM, RBAC, MFA, conditional access, administrative roles, user lifecycle management, retention policies, audit logging, workspace controls, DLP, and acceptable-use enforcement.

• Evaluate and manage AI platform functionalities such as file uploads, custom assistants, projects, GPTs, connectors, browsing, code execution, data analysis, plugins, agents, API access, and external sharing.

• Analyze and secure AI integrations with enterprise repositories and collaboration tools, including Google Drive, SharePoint, OneDrive, Slack, Teams, GitHub, GitLab, Jira, Confluence, Salesforce, Snowflake, Databricks, and BI platforms.

• Oversee and direct comprehensive AI Security Implementation initiatives as part of a project team, encompassing tasks like identity integration, access control design, data protection measures, AI platform configurations, connector governance, monitoring/logging, and incident response workflows.

⛳️ Requirements

• Bachelor’s degree in Computer Science, Cyber Security, Information Systems, Engineering, or equivalent experience.

• Excellent written and verbal communication skills, particularly in relation to C-Suite and Executive interactions.

• Proven experience in designing and delivering enterprise security architectures (projects or otherwise), especially in Cloud, SaaS, data, application, or security operations.

• Experience in securing SaaS platforms utilizing SSO, SCIM, RBAC, MFA, conditional access, logging, DLP, lifecycle management, and administrative controls.

• Familiarity with identity providers and collaboration platforms such as Okta, Microsoft Entra, Google Workspace, Microsoft 365, Slack, Atlassian, GitHub, and/or GitLab.

• Experience with Cloud Platforms like AWS, Azure, and/or GCP.

• Expertise in secure SDLC, application security testing, API security, secrets management, vulnerability management, and software supply chain (essential requirement).

• Proven track record of conducting threat modeling and translating risks into actionable technical and operational controls.

• Experience integrating security telemetry into SIEM/SOAR platforms such as Splunk, Sentinel, Datadog, or similar technologies.

• Over 5 years of experience in security engineering, cloud security, application security, data security, IAM, security architecture, or security operations.

• More than 5 years of experience working with cloud/enterprise SaaS platforms or modern data platforms (specifically Databricks/Snowflake/Fabric/Big Query).

• Experience with generative AI platforms, particularly Claude Enterprise.

• Understanding of LLM security risks such as prompt injection, sensitive information disclosure, insecure output handling, excessive agency, retrieval abuse, and software supply chain risk.

• Familiarity with AI security and governance frameworks like OWASP Top 10 for LLM Applications, MITRE ATLAS, NIST AI RMF, ISO 42001, SOC 2, HIPAA, PCI DSS, GDPR, or similar frameworks is preferred.

• Experience with Python, APIs, Terraform, CI/CD pipelines, GitHub Actions, GitLab CI, container technologies, or infrastructure-as-code security is preferred.

• Experience in conducting AI red teaming, adversarial testing, abuse-case analysis, or model-integrated application security reviews is preferred.

• Advanced certification in one or more cloud platforms, such as AWS, Azure, or GCP, is preferred.

• Security certifications such as CISSP, CCSP, CISM, GIAC, AWS Security Specialty, Azure Security Engineer, Google Professional Cloud Security Engineer, or similar credentials are preferred.

🏝️ Benefits

• Fully remote work environment.

• Opportunity to work at the headquarters located in Sandy Springs, GA.