AI Security Architect

• Architect, maintain, and implement security for the Artificial Intelligence ecosystem in the organization.
• Design, implement, and continuously improve the organizational IAM architecture relating to AI workloads.
• Work with technology partners to evaluate concepts for securing AI workloads.
• Configure and maintain technologies supporting the IAM function and AI security.
• Collaborate with product teams to ensure solutions are designed securely from access management perspective.
• Integrate security into the SDLC, ensuring AI models and systems are secure by default.
• Define and enforce secure coding practices for AI/ML components and APIs.
• Identify and assess threats specific to AI systems and implement appropriate security measures.
• Provide training and guidance on AI security risks and mitigations.
• Collaborate on audits and implement findings against ISO27001 and ISO42001 standards.
• Participate in major incident responses and conduct detailed security analysis of application architectures.
• Manage AI security testing including penetration tests and remediation activities.
• Ensure compliance with IT and Information Security policies and regulatory standards.
• Serve as an escalation point for non-compliance issues related to AI security and IAM.
• Provide leadership and mentorship to identity and access management staff and AI teams.
• Oversee on-call support structure ensuring minimal disruption to business operations.

Technologies:

• AI
• AWS
• Active Directory
• Architect
• Azure
• Cloud
• GCP
• IAM
• Support
• Security
• TOGAF
• WAF
• DevSecOps
• Excel
• Matrix, We are a global law firm based in London, committed to protecting client data and supporting secure innovation through our Information Security team. We offer a range of benefits including an occupational pension scheme, private medical insurance, mental health resources, and wellness services. Our team plays a crucial role in maintaining our reputation and meeting regulatory standards. We recognize our employees as valuable assets and provide extensive support to foster professional growth in a collaborative environment.

• Minimum of 10 years experience in working with Microsoft identity products, namely Active Directory and Entra ID.
• Minimum of 7 years experience working in architecture or information security, with at least 4 years focused on identity and access management.
• Current Azure certifications (e.g., Azure Security Engineer Associate).
• Strong knowledge of security and compliance standards and frameworks, such as ISO42001, ISO27001, MS CAF, and WAF.
• Excellent communication, leadership, and interpersonal skills, with the ability to collaborate across teams and with external parties such as MSSP.
• Ability to work effectively in a fast-paced, dynamic environment.
• A genuine passion for continuous learning and development in cybersecurity, staying up to date with the latest developments, trends, and technologies in the field.
• High level of personal integrity and ethics, demonstrating appropriate judgment in high-pressure situations.
• Bachelors degree in Information Security, Computer Science, or a related field is desirable.
• Additional relevant security certifications e.g. CISSP, SABSA, TOGAF are a plus.
• Legal or professional services experience is highly desirable.
• Knowledge of additional cloud platforms e.g. AWS, GCP is a plus.
• Experience with zero trust architecture implementation and least privilege principles is a plus.
• Background in application security and secure SDLC practices is a plus.