Senior Information Security Architect – AI & Cloud Security

Job Description

Company: BIP US

Location: New York, US

Role: Senior Information Security Architect – AI & Cloud Security

Company Overview:
Business Integration Partners (BIP) is Europe’s fastest growing digital consulting company and is on track to reach the Top 20 globally by 2030. With a growing presence across the United States—including New York, Charlotte, Chicago, and Houston—BIP operates at the intersection of business strategy, technology, and data to deliver impactful solutions for clients.
With more than 6,000 professionals worldwide, BIP partners with organizations across Financial Services, Insurance, Payments, and other industries. Our capabilities span Data & AI, Cybersecurity, Risk & Compliance, Digital Transformation, and Change Management. We combine deep industry expertise with engineering excellence to help clients modernize platforms, unlock data insights, and drive innovation.
As part of our continued expansion in the United States, BIP is strengthening its Capital Markets technology practice. Our teams work closely with trading, risk, and front-office technology organizations to modernize critical platforms, enhance analytics capabilities, and support complex financial product ecosystems.

Position Overview:

We are seeking a Senior Information Security Architect with 8–12+ years of experience designing secure enterprise architectures across cloud, application, data, and AI platforms. This individual will play a key role in defining secure architecture patterns, performing security architecture reviews, conducting threat modeling exercises, and ensuring enterprise AI solutions are designed with security, privacy, and regulatory compliance at their core.

The ideal candidate possesses deep expertise across cloud security, application security, AI/ML security, and enterprise architecture, with practical experience securing Large Language Models (LLMs), Retrieval-Augmented Generation (RAG) architectures, and modern AI development platforms. This individual will collaborate closely with engineering, architecture, product, and cybersecurity teams to ensure secure-by-design principles are embedded throughout enterprise technology initiatives.

This role offers the opportunity to influence enterprise-wide security strategy while helping organizations securely deploy next-generation AI capabilities in highly regulated environments.

Key Responsibilities:

Security Architecture & Secure Solution Design

• Design and maintain secure architecture patterns for enterprise cloud, application, data, and AI platforms.
• Define security requirements and ensure alignment with enterprise architecture standards, cybersecurity policies, and regulatory requirements.
• Evaluate solution architectures, system integrations, data flows, and non-functional security requirements during project planning and design.
• Provide technical guidance to engineering teams on secure solution design, architectural tradeoffs, and risk mitigation strategies.
• Participate in architecture governance, design reviews, and solution approval processes across enterprise initiatives.

AI/ML & Generative AI Security

• Develop secure architecture patterns for Large Language Models (LLMs), Retrieval-Augmented Generation (RAG) solutions, enterprise AI agents, and vector database architectures.
• Evaluate emerging AI technologies and recommend secure implementation strategies.
• Define security controls for AI inference platforms, prompt management, data access, identity boundaries, and model governance.
• Support secure adoption of AI-enabled developer platforms, intelligent automation solutions, and enterprise AI applications.
• Collaborate with engineering teams to implement secure AI deployment practices across cloud-native environments.

Threat Modeling, Risk Assessment & Security Reviews

• Conduct comprehensive threat modeling exercises using methodologies such as STRIDE or equivalent frameworks.
• Perform architecture risk assessments utilizing industry frameworks including MITRE ATLAS, OWASP Top 10 for LLMs/Generative AI, and the NIST AI Risk Management Framework.
• Identify risks including prompt injection, model poisoning, data leakage, model theft, hallucinations, supply chain vulnerabilities, and insecure AI integrations.
• Recommend architectural safeguards including identity controls, input/output validation, retrieval restrictions, encryption, privacy controls, and secure data handling practices.
• Produce architecture review documentation, threat models, data flow diagrams, and technical risk assessments.

Cloud Security & Enterprise Architecture

• Provide security architecture guidance across AWS cloud environments, containerized applications, APIs, identity services, key management, and secrets management.
• Evaluate cloud-native architectures for security, scalability, resilience, and operational risk.
• Collaborate with cloud engineering teams to establish secure infrastructure patterns and enterprise security standards.
• Support secure integration of third-party technologies, SaaS platforms, and enterprise applications.
• Recommend improvements to enterprise security architecture based on evolving threats and emerging technologies.

Collaboration, Governance & Technical Leadership

• Partner with software engineering, cloud engineering, enterprise architecture, product management, and cybersecurity teams throughout the solution lifecycle.
• Translate enterprise security policies and governance requirements into practical architectural guidance for delivery teams.
• Educate engineering organizations on secure-by-design principles, AI security best practices, and emerging threat landscapes.
• Support technology evaluations and architectural decision-making for cloud, AI, and enterprise platforms.
• Communicate complex security concepts effectively to technical teams, executive leadership, and business stakeholders.

Required Qualifications:

• 8–12+ years of experience in Information Security, Security Architecture, Enterprise Architecture, or Cybersecurity Engineering.
• Recent experience securing AI/ML or Generative AI solutions within enterprise environments.
• Proven experience conducting architecture reviews, threat modeling, and security design assessments for complex distributed systems.
• Strong understanding of Generative AI security concepts, LLM risks, and AI governance frameworks including MITRE ATLAS, OWASP LLM Top 10, and NIST AI Risk Management Framework.
• Extensive experience securing AWS cloud environments, APIs, identity and access management, networking, container platforms, encryption, key management, and secrets management.
• Strong understanding of cloud-native architectures, microservices, and modern application security principles.
• Experience interpreting enterprise security policies, standards, regulatory requirements, and security control frameworks.
• Hands-on experience creating technical architecture diagrams, threat models, and security documentation.
• Excellent communication, stakeholder management, and cross-functional collaboration skills.

Preferred Qualifications:

• Experience securing enterprise Generative AI platforms including LLMs, RAG architectures, vector databases, AI agents, and model-serving environments.
• Experience with AI-assisted developer tools such as GitHub Copilot, Microsoft Copilot Studio, or similar AI coding platforms.
• Knowledge of secure AI software development lifecycle (AI SDLC) best practices.
• Familiarity with DevOps, CI/CD pipelines, Infrastructure-as-Code, and secure software delivery practices.
• Professional certifications such as CISSP, CISM, CCSP, CCSK, CRISC, AWS Security Specialty, or equivalent cloud security certifications.
• Experience working within Financial Services or other highly regulated enterprise environments.
• Familiarity with Zero Trust Architecture, data privacy controls, and enterprise governance frameworks.

**The base salary range for this role is $140,000 – $200,000, with flexibility for exceptional candidates**

Benefits:
• Choice of medical, dental, vision insurance.
• Voluntary benefits.
• Short- and long-term disability.
• HSA and FSAs.
• Matching 401k.
• Discretionary performance bonus.
• Employee referral bonus.
• Employee assistance program.
• 11 public holidays.
• 20 days PTO.
• 7 Sick Days.
• PTO buy and sell program.
• Volunteer days.
• Paid parental leave.
• Remote/hybrid work environment support.
For more information about BIP US, visit https://www.bip-group.com/en-us/.
Equal Employment Opportunity:
It is BIP US Consulting policy to provide equal employment opportunities to all individuals based on job-related qualifications and ability to perform a job, without regard to age, gender, gender identity, sexual orientation, race, color, religion, creed, national origin, disability, genetic information, veteran status, citizenship, or marital status, and to maintain a non-discriminatory environment free from intimidation, harassment or bias based upon these grounds.
BIP US provides a reasonable range of compensation for our roles. Actual compensation is influenced by a wide array of factors including but not limited to skill set, education, level of experience, and knowledge.

Source: LinkedIn