Cyber Security AI Orchestrator

JOB SPECIFIC INFORMATION Date

• AI Security Strategy & Governance

• Serves as the senior SME for AI security, defining policies, standards, and architectural guardrails for GenAI, LLMs, agentic AI, and ML platforms aligned with NIST AI RMF, CIS Controls, and Cenlar security policy.
• Leads AI security risk assessments, evaluating adversarial ML threats (poisoning, evasion), promptbased risks, output safety concerns, model theft, data leakage, and supplychain vulnerabilities.
• Establishes governance for model catalogs, sanctioned AI tools, shadowAI detection, and enterprise approval pathways.
• Embeds securebydesign principles across AI development, testing, deployment, and monitoring pipelines.

• LLM / Agentic System Security & Hardening

• Develops and validates secure configurations for LLM and RAG architectures, including retrieval permissioning, functioncalling safeguards, and agent workflow boundaries.
• Conducts AI redteam exercises and adversarial testing; drives guardrail tuning, jailbreak prevention, and output safety assurance.
• Integrates AI security telemetry into SIEM/XDR/SOAR to improve detection of misuse, exfiltration attempts, or integrity failures.

• AI Incident Response & Defense Automation

• Designs and operates AIassisted incident response frameworks that detect, isolate, and contain threats in real time.
• Builds automated triage, containment, and recovery agents that preserve missionessential services and enable graceful degradation under attack.
• Conducts integrity verification, evidence automation, forensic correlation, and postincident AI behavior analysis.
• Leads crossteam coordination during AIrelated incidents, integrating intelligence, engineering, and operational support.

• Automation, Integration & Evidence Management

• Develops automation pipelines for security policy enforcement, model telemetry ingestion, anomaly detection, and AI governance workflows.
• Integrates AI controls and evidence collection into ServiceNow GRC/SecOps for continuous monitoring, control testing, and audit readiness.
• Creates dashboards that visualize AI risk posture, compliance adherence, and control performance.

• Training, Awareness & Collaboration

• Provides training to engineers, developers, and business units on secure AI usage, responsible model interaction, and emerging adversarial threats.
• Partners with Information Security, Cloud Architecture, SOC/IR, GRC, and business stakeholders to embed AI security controls and align strategies.
• Monitors threat intelligence related to AI exploitation, synthetic attacks, and industry developments, translating insights into actionable controls.

Requirements, Education, Experience

• Bachelors degree in Computer Science, Cybersecurity, Information Systems, Data Engineering, or equivalent experience; Masters preferred.
• 5+ years of cybersecurity experience, including 1-3+ years focused on AI/ML security, LLM security, model governance, or agentic AI systems.
• Hands-on experience with AI security controls, LLM/RAG architecture hardening, adversarial testing, and secure MLOps.
• Experience with Azure OpenAI, Azure ML, AWS Bedrock/SageMaker, and hybrid AI deployments.
• Strong understanding of authentication, authorization, access governance, and Zero Trust identity controls related to AI workflows.
• Proficiency with Python, PowerShell, APIs, and automation tooling for policy enforcement and telemetry processing.
• Experience with NIST AI RMF, CIS Controls, ISO 27001, SOX, GLBA, FFIEC, and emerging AI regulatory guidance.
• Strong analytical, communication, and crossteam leadership skills.

• Highly Preferred Certifications

• CISSP, CCSP
• SANS GSEC
• Azure AI Engineer Associate
• AWS Machine Learning Specialty
• Google Professional Machine Learning Engineer
• Additional cloud, governance, or AIfocused certifications are beneficial.

The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties and skills required.