AI Security Architect/Partner

Job summary

New York
Engineering

Work model

Hybrid · 3 days home
5 days ago
Job description

Requirements

Must have:

  • Bachelors or masters degree in Computer Science, Information Security, Cybersecurity, Computer Engineering, or a closely related technical discipline, or equivalent hands-on experience.
  • 10 years of information security experience with deep expertise in enterprise security architecture.
  • 5 years of experience designing security architectures for cloud-native and distributed environments.
  • Proven experience securing Generative AI, LLMs, AI agents, machine learning platforms, and MLOps ecosystems.
  • Strong knowledge of AI security principles, adversarial machine learning, AI governance, and model risk management.
  • Experience with AI threat modeling using MITRE ATLAS, OWASP Top 10 for LLM Applications, STRIDE, or similar methods.
  • Expertise in AWS, Azure, or Google Cloud Platform security.
  • Strong understanding of secure software development, DevSecOps, Kubernetes, containers, APIs, and cloud-native application security.
  • Experience implementing enterprise IAM, secrets management, encryption, and data protection strategies for AI and cloud environments.
  • Experience conducting security architecture reviews, secure code reviews, and application security assessments.
  • Working knowledge of NIST AI RMF, NIST CSF, ISO 27001, ISO 42001, CIS Controls, GDPR, and emerging AI regulations.
  • Excellent communication and executive stakeholder management skills.
  • Financial services or FinTech experience is preferred.
  • Professional certifications such as CISSP, CCSP, AWS Security Specialty, Azure Security Engineer, GIAC, SABSA, or AI Security certifications are desirable.

Responsibilities

  • Serve as the enterprise AI Security Architect and trusted advisor for AI initiatives across the organization.
  • Define and deliver the enterprise AI security strategy, governance framework, and security architecture roadmap.
  • Design secure reference architectures for Generative AI, LLMs, AI agents, Retrieval-Augmented Generation, and machine learning platforms.
  • Establish secure-by-design principles and AI security controls across the AI/ML lifecycle.
  • Perform end-to-end AI security architecture reviews for AI platforms, cloud environments, APIs, and enterprise applications.
  • Conduct AI threat modeling using MITRE ATLAS, OWASP Top 10 for LLM Applications, STRIDE, and attack simulation techniques.
  • Define and implement controls to reduce AI-specific threats such as prompt injection, model poisoning, adversarial attacks, data leakage, model theft, insecure plugins, excessive agency, and supply chain risk.
  • Develop security standards for AI infrastructure, model lifecycle management, secure MLOps, model governance, and AI deployment pipelines.
  • Partner with engineering, DevSecOps, cloud, and data science teams to embed security throughout AI development and deployment.
  • Provide architectural guidance on AI identity and access management, secrets management, data protection, encryption, and privileged access management.
  • Lead enterprise AI cyber risk assessments and help shape technology investment decisions related to AI adoption.
  • Create AI security blueprints, reference architectures, policies, and governance frameworks aligned with industry standards.
  • Drive remediation efforts for AI security vulnerabilities and mentor engineering teams on secure implementation practices.
  • Collaborate with legal, privacy, compliance, audit, and risk teams to support responsible AI practices and regulatory compliance.
  • Build strong partnerships with infrastructure, application development, cloud engineering, and business stakeholders.
  • Present AI security strategy, risk posture, and architectural recommendations to executive leadership, regulators, clients, and internal audit teams.

Company

Tradeweb is a global leader in electronic trading across asset classes, serving more than 3,000 clients in over 85 countries. Our platform supports efficient, multi-asset trading at global scale, and we have driven strong growth through innovation, collaboration, and a sharp client focus.

This is a technology-driven, fully remote role with our technology hub in Jersey City for team meetings and collaboration. We offer a competitive benefits package including medical, dental, vision, hybrid flexibility, 401(k) match, bonus eligibility, and more. We are an equal opportunity employer.