Cyber Security AI SaaS Security Architect

About The Position

Requirements

• U.S. Citizenship is required
• Must have or be able to receive a Public Trust
• Candidate must live in the Washington, D.C., metropolitan area.
• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or a related field, or equivalent practical experience.
• 8+ years of experience in security architecture, cloud security, application security, or enterprise risk management.
• Strong understanding of AI, machine learning, and generative AI concepts, including large language models, model pipelines, and AI-enabled applications.
• Hands-on experience with core security domains such as identity and access management, encryption, data protection, secure software design, logging, monitoring, and incident response.
• Experience conducting threat modeling, architecture reviews, and security control design for complex technology environments.
• Knowledge of AI governance, privacy, and compliance requirements, including risk frameworks and audit expectations.
• Excellent communication skills, with the ability to work effectively across technical, business, and leadership audiences.

Nice To Haves

• Experience securing generative AI, retrieval-augmented generation, AI agents, or enterprise AI platforms in production environments.
• Familiarity with frameworks and standards such as NIST AI RMF, OWASP guidance for LLM applications, ISO 42001, SOC 2, GDPR, HIPAA, or similar requirements.
• Experience with SaaS security posture management, third-party risk reviews, and cloud-native security controls.
• Relevant certifications such as CISSP, CCSP, SABSA, cloud security certifications, or specialized AI security training.
• Experience working in regulated industries or large, complex enterprise environments.

Responsibilities

• Design secure reference architectures for AI and generative AI solutions, including data ingestion, model training, fine-tuning, deployment, inference, and AI-enabled SaaS integrations.
• Design and implement practical security guardrails to prevent prompt injection, data leakage, and model supply-chain risks in AI/SaaS systems.
• Lead AI-focused threat modeling and risk assessments covering issues such as prompt injection, data leakage, model inversion, adversarial manipulation, model poisoning, and software supply chain risk.
• Partner with engineering, data science, product, legal, privacy, and compliance teams to embed secure-by-design practices into AI workflows and release processes.
• Establish policies, standards, and governance controls for acceptable AI use, data protection, model access, retention, auditability, and third-party oversight.
• Support architecture reviews, security testing, adversarial validation, and control assessments for AI systems before and after deployment.
• Recommend monitoring, detection, and response approaches for AI-related misuse, drift, abuse, and high-risk behavior.
• Translate technical risks into clear architectural guidance and business-focused recommendations for stakeholders and leadership.