AI Security Architecture VP

Global Cybersecurity (GCS) protects State Street and its clients from the impact of cyber-attacks against systems by understanding the risks these attacks present and mitigating them through a robust, continuously evolving, cybersecurity program and control environment.

Fusion & Security Operations (F&SO) is one of five functions that make up GCS. F&SO works to provide real-time knowledge of cyber threats of today collectively to better prepare State Street for threats of tomorrow.

The AI Security Architect is a hands-on technical role responsible for designing, implementing, and reviewing security controls for AI, machine learning, and generative AI solutions across State Street's technology environment. This role partners closely with engineering, product security, and platform teams to help ensure AI capabilities are delivered securely, responsibly, and in alignment with regulatory requirements. This position is ideal for a security professional with strong foundations in application, cloud, or product security who is building deeper expertise in AI security architecture and risk management.

Responsibilities:

* Contribute to the design and implementation of secure architecture patterns for AI/ML and Generative AI systems, including data pipelines, model access, and AI-enabled applications.

* Support the development and documentation of AI security standards, reference architectures, and guardrails.

* Participate in architecture and design reviews for AI-related initiatives, providing security guidance under senior architect direction.

* Partner with engineering teams to ensure security requirements are considered early in solution design.

* Perform AI-focused threat modeling for AI services, models, and data flows.

* Identify security risks such as data leakage, prompt injection, insecure model access, OSS vulnerabilities, and misuse scenarios.

* Work with senior architects and security partners to recommend appropriate mitigations and compensating controls.

* Support integration of AI security controls into software development and Dev Sec Ops  workflows.

* Assist in defining security requirements and validation checks for AI pipelines and platforms.

* Help develop repeatable patterns and templates that enable teams to adopt AI securely with less friction.

* Assist with security reviews for emerging AI capabilities, including GenAI tools, internal AI services, and developer productivity use cases.

* Stay informed on AI security trends, tooling, and common risk patterns through research and internal knowledge sharing.

* Contribute ideas and observations on improving AI security practices across the organization.

* Ensure AI security designs align with internal policies and external standards (e.g., NIST, ISO, FFIEC concepts).

* Support audit, risk, and compliance efforts by helping document architecture decisions and controls.

* Participate in post-incident reviews and action tracking for AI-related security events.

* Work closely with security engineering, product security, platform, and data teams to resolve AI security concerns.

* Communicate technical risks and recommendations clearly to engineering audiences.

* Escalate complex or high-risk issues to senior architects with supporting analysis and options.

Preferred Qualifications:

* Bachelor's degree in Computer Science, Information Security, Engineering, or a related field.

* Relevant security or cloud certifications are a plus.

* 5-7 years of experience in application security, product security, cloud security, or security engineering roles.

* Experience securing cloud-native applications or platforms in an enterprise environment.

* Exposure to AI/ML or data-driven systems, including model usage, APIs, or analytics platforms.

* Familiarity with secure software development practices and Dev Sec Ops  concepts.

* Experience working in or with regulated environments preferred.

* Solid technical fundamentals in security architecture and secure design.

* Curiosity and willingness to learn in a rapidly evolving AI security landscape.

* Ability to break down risks and communicate them clearly to engineers.

* Collaborative, execution-focused mindset.

* Comfortable working…