Information Security Specialist ( AI Platform Security Specialist) (B3617)

Own and define security architecture for AI platforms across Azure and GCP.,Lead and execute Proof-of-Concepts for complex, novel security technologies (e.g., LLM Firewalls, Agentic AI security tools).,Design and document hardening and segmentation strategies to securely integrate AI assets with On-Premises systems.,Serve as a subject matter expert, providing technical leadership and mentorship.,Evaluate the end-to-end AI lifecycle and apply security controls to protect against adversarial and supply chain attacks.,Act as an expert in securing emerging multi-agent and tool-calling frameworks (A2A, MCP).,Architect Identity and Access Management (IAM) framework for AI environments, including secure token exchange (OAuth 2.0/OIDC) and granular RBAC.,Design security posture for API gateways and application delivery networks for LLM and RAG applications.,Support the design, build, and testing of security controls to mitigate AI/ML attacks as outlined by frameworks like OWASP Top 10 for LLM Applications and Mitre Atlas.,Partner with AI Development teams to support their AI Red Team program.,Work with DevOps and Platform Engineering teams to translate security PoCs and designs into Infrastructure as Code (IaC) and automated security pipelines.,Provide expert input to governance bodies regarding AI security risks and compliance.

7+ years of progressive experience in Cloud Security, Cyber Security Engineering, or Application Security.,3+ years leading AI programs end-to-end.,Deep, demonstrable knowledge of security design and architecture principles for scalable cloud-native applications.,Expert-level practical experience securing infrastructure and services in Microsoft Azure and Google Cloud Platform (GCP).,Deep understanding of AI security frameworks such as OWASP Top 10 for LLM Applications, OWASP API Top 10, Mitre Atlas.,Deep understanding of the end-to-end AI lifecycle with proven ability to secure each stage against adversarial attacks and supply chain vulnerabilities.,Expertise in Identity and Access Management (IAM) and advanced authorization protocols (OAuth 2.0/OIDC).,Mandatory experience designing and implementing centralized Secrets Management solutions (e.g., Azure Key Vault, GCP Secret Manager).,Proven ability to conduct security evaluations and technical PoCs for complex security products.,Strong understanding of security vulnerabilities unique to Generative AI, LLM, and RAG architectures.,Familiarity with Agentic AI concepts and security implications of emerging protocols (A2A, MCP).