Generative AI Security Architect
$143,000 - $214,475/Yr
Thermo Fisher Scientific - Chapel Hill, NC
posted 2 months ago
Full-time - Mid Level
Hybrid - Chapel Hill, NC
10,001+ employees
Computer and Electronic Product Manufacturing
About the position
The Generative AI Security Architect at Thermo Fisher Scientific plays a crucial role in ensuring that AI-related products are developed and tested against security standards. This position involves collaborating with various teams to identify security vulnerabilities, conducting threat modeling, and designing security solutions tailored to AI products. The architect will also contribute to maturing security processes and frameworks, ensuring that the company's products help make the world healthier, cleaner, and safer.
Responsibilities
- Evaluate and provide technical security architecture guidance in the assessment, design, and implementation of AI-related products.
- Work with multi-functional business units to identify, capture, and raise security vulnerabilities in Thermo Fisher AI-related products and platforms.
- Establish and build working relationships with product development partners to maintain and improve product and application security processes.
- Conduct threat modeling exercises to identify potential security risks and vulnerabilities in AI-related products.
- Collaborate with AI, cloud security, and infrastructure teams to embed security into applications.
- Design and implement security solutions and controls tailored to the unique challenges of AI-related products.
- Contribute to maturing process, policy, and standards guidance.
- Build security control framework and generic reference architectures for AI-related applications and products.
- Keep up-to-date with the latest data protection and AI security practices and laws.
- Provide domain expertise related to AI security.
Requirements
- Bachelor's Degree in cybersecurity, computer science, or related field (equivalent work experience accepted).
- 3-5 years of related work experience with product security, secure software development, risk assessment, or vulnerability management.
- 3-5 years working as an architect or engineer in Cloud, e-Commerce, IoT, Endpoint, Network, or Server.
- Experience with AI frameworks such as Azure OpenAI and Amazon Bedrock AI.
- Strong organization skills, leading sophisticated projects.
- Strong knowledge of AI technologies and governance principles and their inherent security risks, machine learning models, adversarial attacks, and data privacy regulations.
- In-depth knowledge related to building, managing, and securing AI solutions.
Nice-to-haves
- Certifications such as Azure AI Engineer Associate, AWS Certified Machine Learning - Specialty, AWS Certified AI Practitioner, CISSP, or other security-related certifications.
- Excellent verbal and written communication skills and the ability to interact professionally with a diverse group, executives, managers, and technical teams.
- Exposure to popular application and AI security standards including OWASP ASVS, OWASP Top 10, OWASP LLM Top 10.
- Proficiency in web application compliance standards, regulatory frameworks, and proven security strategies.
- Experience developing Reference Security Architecture and Design Patterns to support proactive security controls.
Benefits
- Competitive remuneration and annual incentive plan bonus.
- Healthcare and a range of employee benefits.
- At least 120 hours paid time off (PTO) and 10 paid holidays annually.
- Paid parental leave (3 weeks for bonding and 8 weeks for caregiver leave).
- Accident and life insurance, and short- and long-term disability.
- Retirement and savings programs, including a competitive 401(k) U.S. retirement savings plan.
- Employees' Stock Purchase Plan (ESPP) offers eligible colleagues the opportunity to purchase company stock at a discount.
