AI Enablement and Governance - AI Security and Controls Lead

The role is for a Lead responsible for enabling secure, responsible, and scalable AI adoption by defining, implementing, and evaluating AI-specific security and risk controls across the AI lifecycle. It serves as a bridge between AI engineering, information security, privacy, and third-party risk teams.

Location: Remote (US)

Salary: $140,000–$180,000/yr

Responsibilities

• Partnering directly with AI Engineers & Developers, Information Security and governance teams to define AI-specific security and risk management standards covering AI/ML models, RAG solutions, and agentic architectures.
• Translating enterprise security principles and risk frameworks into AI‑appropriate guidance, addressing topics such as, model access control and abuse prevention, prompt and context security, data leakage, memorization, and inference risks, agent autonomy boundaries and safeguards.
• Define AI runtime monitoring and incident response expectations, aligned to (and extending as needed) existing incident response playbooks.
• Ensuring AI security guidance remains aligned with evolving technology patterns, external expectations, and internal architectures, and external expectations (e.g. NIST AI RMF/CSF, NYDFS AI Cybersecurity, ISO/IEC 42001).
• Contributing to the broader AI policy hierarchy by ensuring security requirements are clearly mapped to AI governance policies, controls and standards.

Requirements

• 5+ years of relevant experience (or equivalent expertise) in information security, technology risk, AI governance, model risk management, privacy engineering, or related roles.
• Strong understanding of AI architectures, Machine learning pipelines, Retrieval‑augmented generation (RAG), Agentic and tool‑using AI patterns.
• Demonstrated ability to translate technical AI and security concepts into clear control expectations and guidance.
• Experience working cross‑functionally with engineering, security, privacy, and risk teams.
• Practical, risk‑based mindset with strong judgment and attention to detail.
• Excellent written communication skills; ability to create clear, defensible documentation.
• Relevant certifications preferred (e.g., AAISM, CISSP, CISM, CRISC, AIGP, cloud security certifications).
• Bachelor’s degree in Computer Science, Engineering, or related field, or equivalent practical experience

Benefits

• Comprehensive total rewards package including health, dental, and vision coverages starting Day One.
• Wellbeing programs, retirement plans with contribution matching, generous time off, parental leave, continuing education, and career growth opportunities.

Additional Information

• Application process includes background checks such as SSN/SIN validation, education verification, employment verification, criminal check, sanctions and watch list checks, credit check, and drug test.
• All virtual interviews are conducted on video.
• Alight is committed to diversity and inclusion, providing reasonable accommodations for persons with disabilities during the hiring process.