AI Security & Deployment Architect

About The Position

Requirements

• 10+ years in IT systems architecture, security architecture, identity governance, or cloud platform engineering
• Depth in at least one: M365 / Entra ID / Azure landing zones; AWS Organizations / IAM; GCP Org Policy / VPC-SC; identity & privileged access; or SOC 2 / ISO 27001 / NIST CSF leadership
• Hands-on AI-native experience: enterprise procurement and rollout of Anthropic / OpenAI / Azure OpenAI, ZDR / BAA / DPA negotiation, at least one bounded agent deployed in a real tenant
• A consultative posture with CISOs: translate concerns into architecture without making anyone feel cornered
• Written, inspectable deliverables; the readiness plan is a document the client signs, not a deck
• CLI and agent pairing should already be your daily default. This isn't for you if you think models "aren't ready," or if you can't let the client's team own the keyboard.

Nice To Haves

• Pace-calibration range: bringing both an early-stage IT team and a sophisticated cloud-native one up the curve
• A track record of respecting an existing security boundary rather than pushing a single vendor's cloud

Responsibilities

• Run discovery with the client's CIO, CISO, and lead architects; map the current tenant (M365 / Entra ID, AWS / GCP / Azure, identity, egress) and the gaps to AI-readiness
• Walk client IT through the decision matrix: where work happens, where agent API calls go, who owns keys and billing, data posture, logging
• Pair with their team as they configure; they own the keystrokes, you own the architecture
• Deliver a signed-off deployment-readiness plan the FDE team can sprint on from day one
• Re-engage as the work expands: enterprise AI surfaces, hardened dev environments, bounded agent runtimes

Benefits

• Health, dental, and vision coverage
• Professional-development budget