The AI Security Architect is a hands-on technical role responsible for designing, implementing, and reviewing security controls for AI, machine learning, and generative AI solutions across State Street’s technology environment.
Requirements
- Contribute to the design and implementation of secure architecture patterns for AI/ML and Generative AI systems, including data pipelines, model access, and AI-enabled applications.
- Support the development and documentation of AI security standards, reference architectures, and guardrails.
- Participate in architecture and design reviews for AI-related initiatives, providing security guidance under senior architect direction.
- Partner with engineering teams to ensure security requirements are considered early in solution design.
- Perform AI-focused threat modeling for AI services, models, and data flows.
- Identify security risks such as data leakage, prompt injection, insecure model access, OSS vulnerabilities, and misuse scenarios.
- Work with senior architects and security partners to recommend appropriate mitigations and compensating controls.
- Support integration of AI security controls into software development and DevSecOps workflows.
- Assist in defining security requirements and validation checks for AI pipelines and platforms.
- Help develop repeatable patterns and templates that enable teams to adopt AI securely with less friction.
- Assist with security reviews for emerging AI capabilities, including GenAI tools, internal AI services, and developer productivity use cases.
- Stay informed on AI security trends, tooling, and common risk patterns through research and internal knowledge sharing.
- Contribute ideas and observations on improving AI security practices across the organization.
- Ensure AI security designs align with internal policies and external standards (e.g., NIST, ISO, FFIEC concepts).
- Support audit, risk, and compliance efforts by helping document architecture decisions and controls.
- Participate in post-incident reviews and action tracking for AI-related security events.
- Work closely with security engineering, product security, platform, and data teams to resolve AI security concerns.
- Communicate technical risks and recommendations clearly to engineering audiences.
- Escalate complex or high-risk issues to senior architects with supporting analysis and options.
Benefits
- Retirement Plan
- Insurance Coverage
- Paid-Time Off
- Employee Assistance Program
- Incentive Compensation
- Tax Advantaged Savings Plans
