Senior Cybersecurity Architect - AI/ML
17 Months
Oakland, CA 94612 (Hybrid Onsite requiring candidate to be onsite as needed)
Education Minimum: B.S. degree in Computer Science, Information Systems, or other related field, or equivalent experience Education Desired: Master’s degree in computer science or job-related discipline or equivalent experience.
Experience Minimum: 8 years of combined IT, critical infrastructure, intelligence, and/or cyber/information security work experience.
Experience Desired: Utility industry experience. Experience in Information Technology security, multi-platform, or related. Experience in operational technology security.
License/Certification Minimum: CompTIA Security +, SANS, Cisco, GIAC, Microsoft Security, or equivalent certificates
License/Certification Desired: Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), or equivalent
Job Responsibilities:
- Liaison between the company’s Cybersecurity Department and regulatory agencies.
- Participate/lead steering committees for key security committees.
- Lead large enterprise-wide cybersecurity programs/initiatives.
- Provide strategic guidance/direction for development of the operating plan and budget.
- Lead large enterprise-wide cybersecurity strategy roadmaps.
- Oversee detailed living risk portfolio describing the overall aggregated risk posture of each business unit.
- Evaluate AI/ML models for algorithmic bias, data leakage, adversarial attacks (e.g., prompt injection), and structural integrity before and after deployment.
- Ensure AI tools adhere to emerging global governance frameworks, such as the NIST AI Risk Management Framework.
- Collaborate with legal teams to establish usage policies and create "harm taxonomies" that predict and prevent potential misuse of frontier AI models.
- Conduct consequence-based risk assessments on Industrial Control Systems (ICS), SCADA systems, and PLCs to uncover vulnerabilities.
- Develop and implement OT-specific security policies aligned with standards like NIST 800-82.
Knowledge, Skills, and Abilities (Desired):
- Effective communication to peers and clients.
- Able to balance business priorities and maintain/stay customer focused.
- Multi-platform knowledge (UNIX/LINUX, Windows Servers/Desktops, Cisco hardware, etc.).
- Ability to influence and lead behavior change.
- Strong analytical, critical thinking and decision-making skills.
- Solid understanding and knowledge of the companies critical business processes, application, system, and network security, ODN and UDN.
- Master knowledge of cyber/information security management policies, procedures, regulations and governance processes, information systems/network security, system security analysis, information assurance compliance.
- Master knowledge of risk management techniques, technological trends and developments in cyber/information security, systems/software development, engineering, integration, testing and evaluation, and operating systems.
- Master knowledge of applicable and accepted security standards and framework (NIST, ISO, etc.), and regulatory and compliance requirements such as SOX, NERC CIP, CCPA, HIPPA, NRC, etc.
- Master knowledge of performing Cybersecurity and compliance assessments.