IAM - AI Solutions Architect V

About the role:

We are seeking an IAM - AI Solutions Architect V to act as a senior technical leader bridging advanced AI platforms with enterprise Identity and Access Management (IAM) frameworks. This role focuses on securing Generative AI and LLM platforms while strengthening IAM, cloud, and infrastructure security across multi-cloud and on‑prem environments. The engineer will drive forward-looking security strategies, lead proof-of-concepts, and translate AI security designs into production-ready solutions within a large financial services environment.

Responsibilities:

• Research, evaluate, design, and implement AI security and IAM infrastructure solutions
• Conduct proof-of-concepts for emerging AI security technologies and protocols
• Support hardening of AI workloads across Azure, Google Cloud, and on‑prem environments
• Partner with IAM, DevOps, Platform Engineering, Governance, and Vulnerability teams
• Translate successful PoCs into scalable, production-ready IaC and security controls
• Support AI Red Team initiatives with secure testing environments and remediation designs

Must Have Responsibilities:

• Secure emerging Generative AI protocols including Agent-to-Agent (A2A) and Model Context Protocol (MCP)
• Perform threat modeling for AI applications, pipelines, and multi-agent workflows
• Design and implement mitigations for AI/ML threats aligned with OWASP Top 10 for LLMs and MITRE ATLAS
• Define and implement IAM designs for non-human identities, service principals, and cross-cloud access
• Own API security strategy for AI services including OAuth 2.0 / OIDC authentication flows
• Design secrets management solutions using Azure Key Vault and GCP Secret Manager
• Establish AI cloud security baselines, IAM frameworks, and network segmentation

Experience:

• 8+ years of experience in Identity and Access Management
• Experience working in large enterprise environments in a similar role
• Hands-on experience supporting AI platform security and infrastructure design
• Proven experience translating security strategy into operational solutions

Skillsets:

• Cloud KMS & Cryptography (Azure Key Vault, GCP KMS, HSM, BYOK, CMEK)
• Full key lifecycle management (create, rotate, revoke, audit)
• Non-human identity and workload identity (managed identities, service accounts, OIDC federation, STS)
• Policy-as-Code and guardrails (Terraform modules, OPA, Sentinel, Azure Policy)
• API security and least-privilege IAM design
• Low-code and integration platforms (Azure Data Factory, Logic Apps, Power Automate)
• AI and data pipelines (Databricks, Vertex AI, notebook-driven workflows)
• Event-driven automation (Event Grid, Pub/Sub)
• Multi-cloud security with Vault and cloud-native KMS tools

Education:

• No formal degree requirement