Head of AI Security Architecture

About The Position

Requirements

• Deep technical credibility combined with executive‑ready communication skills.
• Strong bias toward automation, scale, and measurable outcomes.
• Ability to translate complex AI security risks into practical, business‑aligned decisions.
• Change agent mindset with a track record of modernizing security functions.
• Customer‑first perspective focused on trust, resilience, and long‑term value.
• 15+ years of experience in security engineering, product security, or architecture roles.
• Demonstrated leadership designing and scaling secure cloud‑native architectures in large, regulated environments.
• Proven experience embedding security into DevSecOps and software engineering workflows.
• Hands‑on experience securing AI/ML and GenAI systems, including governance, data protection, and model risk.
• Strong background in regulatory audits, control remediation, and executive‑level risk communication.
• Experience leading global, multidisciplinary security or engineering teams.

Nice To Haves

• Bachelor’s degree in Computer Science, Information Security, Engineering, or related field. Advanced degree preferred.
• Relevant certifications (CISSP, CISM, cloud security, architecture, or AI‑related certifications) desired.

Responsibilities

• AI Security Architecture & Strategy Define and steward State Street’s enterprise AI security architecture, including secure-by-default patterns for AI platforms, GenAI tooling, AI agents, and data pipelines. Establish architecture standards, guardrails, and reference designs for AI systems across cloud and on‑prem environments. Embed security, privacy, and compliance requirements directly into AI and software engineering lifecycle processes. Partner with Enterprise Architecture and Engineering to ensure AI security scales across product teams with minimal friction.
• Threat Modeling & Defensible Design Establish and mature AI threat modeling practices, aligned to real-world attacker behavior and regulatory scrutiny. Lead identification and mitigation of AI‑specific risks including model abuse, data poisoning, OSS corruption, prompt injection, model inversion, and emerging adversarial AI threats. Drive defensible architecture decisions supported by measurable risk reduction and operational outcomes.
• AI Enablement & Secure Delivery Integrate AI security into DevSecOps pipelines, automating preventative, detective, and responsive controls. Enable secure AI adoption through paved‑road platforms, automation, and architectural simplification. Partner with engineering teams to accelerate AI reviews and approvals through tooling and policy-as-code approaches.
• Emerging Technology & Innovation Lead security architecture for emerging AI capabilities, including AI agents, automation frameworks, and developer assist tooling. Collaborate with crypto and platform teams on post‑quantum readiness considerations as they relate to AI systems and long-lived data. Continuously evaluate new AI security technologies and patterns to strengthen the firm’s defensive posture.
• Operational Excellence Drive data‑driven security architecture decisions, using metrics to identify risk concentration, architectural friction, and opportunities to reduce security burden. Ensure architecture standards align with and support regulatory expectations (FFIEC, NIST, ISO, NYDFS, GDPR, etc.). Contribute to incident response preparedness for AI‑related events, including misuse and systemic failures.
• Executive & Stakeholder Engagement Serve as a trusted technical advisor to the CISO, CIO, architecture leadership, and senior engineering leaders. Deliver concise executive briefings on AI security posture, emerging risks, and architectural tradeoffs. Support regulatory, audit, and client discussions with credible, defensible technical narratives.
• Team Leadership & Development Build and lead a high‑performing AI Security Architecture team. Act as a multiplier for security engineering, product security, and platform teams through coaching and architectural leadership. Foster a culture focused on customer trust, innovation, and continuous improvement.

Benefits

• Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.
• For a full overview, visit https://hrportal.ehr.com/statestreet/Home.