AI Security Risk Manager

AI Security Risk Manager

Join our team as we embrace the world of Generative AI while prioritizing security and compliance. We are looking for an AI Security Risk Manager who will play a crucial role in ensuring secure and responsible AI adoption throughout our organization. This position partners closely with business and IT leaders to streamline risk assessments, develop robust security controls, and ensure that AI initiatives meet industry standards, regulatory requirements, and our organization’s risk appetite. The ideal candidate will blend deep security expertise with a strategic perspective on AI governance, bolstering our ability to innovate securely.

Primary Responsibilities

• Evaluate and assess Generative AI implementations to identify risks and ensure they align with enterprise policies, industry standards, and regulatory frameworks.
• Design and implement security controls that align IT systems with business goals, focusing particularly on AI-specific risks.
• Create and apply AI risk models based on NIST AI RMF, ISO/IEC 42001, and other emerging frameworks.
• Integrate AI risk considerations into enterprise governance; lead or support reviews of AI and emerging technology deployments.
• Employ threat modeling techniques such as the OWASP Top 10 for LLMs to identify, prioritize, and mitigate specific AI risks.
• Work collaboratively with cross-functional teams—engineering, data science, compliance, product—to embed security in AI solution design and deployment.
• Stay updated on emerging trends in AI governance, security standards, and best practices in enterprise risk management.

Required Qualifications

• Strong understanding of AI risk management, with working knowledge of NIST AI RMF and ISO/IEC 42001.
• Experience in information security with a proven ability to assess and implement controls for IT and cloud environments.
• Familiarity with AI threat models (e.g., OWASP LLM Top 10) and risk mitigation strategies.
• Solid foundation in cybersecurity principles, IT risk, and enterprise governance.
• Exceptional communication skills, capable of translating technical risks into business-aligned narratives.
• Relevant certifications such as CISSP, CISA, CISM, or AI governance certifications (e.g., ISACA AI Governance).

Preferred Qualifications

• Hands-on experience with leading AI platforms, including:
• Azure OpenAI Services: secure deployment and governance practices.
• AWS Bedrock: evaluation and integration of models such as Anthropic Claude.
• Google Cloud Vertex AI: secure implementations in enterprise contexts.
• Microsoft Copilot: integration patterns and associated risks.
• Experience with cloud security best practices and enterprise risk management.
• Background in designing or operationalizing large-scale AI governance programs.

Soft Skills

• Ability to influence and engage stakeholders across both technical and business teams.
• Strong problem-solving, critical thinking, and analytical skills.
• Collaborative, proactive, and adaptable mindset.

Justification for the Role

The growth of AI initiatives within our organization has revealed a bottleneck in the risk assessment process. This dedicated position will enhance evaluation workflows, expedite secure AI adoption, and reinforce our organizational resilience by integrating AI risk management into governance and technical design.