We are seeking an AI Security Architect — Data Security & DSPM to own the end-to-end security architecture for our Agentic AI platform and lead the data security mandate for AI. This senior role consolidates two critical scopes — agentic AI security architecture and Data Security Posture Management (DSPM) — into a single accountable owner who designs secure platforms and protects the data flowing through them.
Responsibilities
- Define and own the agentic AI reference security architecture (v1 and beyond) including Platform 1.0 hardening
- Stand up and operate Microsoft Purview DSPM for AI accelerated via Microsoft FastTrack
- Establish the sensitivity-label and ML auto-classification baseline
- Map and govern data flows into and out of agents
- Set architecture standards for agent-to-API and agent-to-data access patterns
- Design and secure agentic AI workloads across a multi-cloud estate spanning Azure and AWS
- Ensure consistent controls regardless of where agents are built and run
- Partner with identity, AppSec and GRC functions to ensure controls are designed in, not bolted on
Requirements
- 8+ years of experience in security architecture with deep expertise in Azure and M365 environments
- Proficiency in Microsoft Sentinel, Entra and Defender for Cloud
- Hands-on experience building and securing agents in multi-cloud setups including AWS Bedrock Agents, AWS Lambda and IAM alongside Azure
- Hands-on expertise in Microsoft Purview DSPM for AI, sensitivity labels, data-flow mapping and ML-based auto-classification
- Knowledge of API and agent architecture security with familiarity with Copilot Studio and agent platforms
- Proven track record designing enterprise-scale secure architectures in regulated environments
- English proficiency at B2 level or higher
Nice to have
- Background in life sciences, medical devices or other regulated manufacturing
- Relevant certifications (e.g. CISSP, Azure Security Engineer, SC-100)