Principal Security Architect, Agent Policy Fabric
Listed on 2026-07-08
-
IT/Tech
Cybersecurity, Information Security
NVIDIA is commonly regarded as one of the most desirable employers, with some of the world’s most dedicated people working for us! The Cloud Engineering & Services team is defining how agentic systems can be deployed responsibly across the enterprise: governed access to company systems, durable policy, scoped credentials, runtime containment, detector-informed response, and audit evidence that security, IT, product, and business leaders can trust.
WhatYou’ll Be Doing
- Lead Enterprise Agent Security Architecture:
Define the cross-company reference architecture for governed agent actions, including durable policies, runtime controls, adapter boundaries, credential mediation, detector response, audit correlation, failure modes, and production-readiness criteria. - Drive APF as a Governance Starting Point:
Translate Agent Policy Fabric concepts into executive-ready decision papers, engineering standards, threat models, control objectives, and implementation achievements without treating working-draft architecture as a pre-decided product direction. - Align Cross-Organization Owners:
Partner with Product Security, Open Shell, Omnistation, Identity, IT, Fleet/MDM, Sec Ops, 3S, legal/privacy, and corporate-resource owners to define who owns each control surface and how agent workflows move from proof-of-life to enterprise pilot. - Build Security Review and Adoption:
Establish review patterns for agent workflows, including policy authoring, approval, signing, runtime admission, credential issuance, direct-egress controls, audit evidence, managing anomalies, and break-glass procedures. - Represent the Architecture:
Brief senior leaders, customer-facing teams, and partner engineering teams on NVIDIA’s agent security posture, APF maturation path, open decisions, known limitations, and the evidence required before broader deployment.
- Bachelor’s degree (or equivalent experience) with 15+ years of industry experience in security architecture, product security, enterprise security platforms, identity and access management, cloud security, or infrastructure governance.
- Security Architecture Leadership:
Validated ability to lead ambiguous, cross-functional security initiatives across product, platform, infrastructure, IT, and security operations teams. - Agent AI Security Judgment:
Practical understanding of agentic AI risks, tool-call governance, prompt-injection limits, sandbox boundaries, credential exposure risks, audit requirements, and the difference between containment, authorization, and monitoring. - Enterprise Control Design:
Experience designing controls around identity, authorization, policy, secrets, network egress, runtime isolation, telemetry, SIEM integration, exception workflows, and compliance evidence. - Executive and Engineering Communication:
Ability to write crisp architecture memos, decision records, threat models, standards, and adoption plans that are useful to both senior leaders and implementation teams.
- Agent Governance
Experience:
Experience securing agent platforms, AI copilots, autonomous workflows, MCP-style tool systems, sandboxed runtimes, or governed access to enterprise SaaS and engineering systems. - Policy and Identity Depth:
Familiarity with OPA/Rego, Cedar, Zanzibar-style authorization, OAuth/OIDC, SAML, workload identity, delegated authorization, signed configuration, or enterprise trust-root distribution. - Large-Scale Security Programs:
Track record driving company-wide security architecture across multiple business units, including standards, rollout plans, risk acceptance, exception handling, and measurable adoption. - External-Facing Architecture:
Experience explaining security architecture to executives, customers, partners, standards bodies, or field teams while preserving bounded claims and clear implementation caveats.
With competitive salaries and a generous benefits package, NVIDIA offers a base salary range of 272,000 USD – 431,250 USD, along with equity and benefits.
Applications for this job will be accepted at least until June 27, 2026.
This posting is for an existing vacancy.
NVIDIA uses AI tools in its recruiting processes.
NVIDIA is committed to fostering an inclusive work environment and is proud to be an equal opportunity employer. We do not discriminate (including in our hiring and promotion practices) on the basis of race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by law.
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).