Job Description

The position is described below. If you want to apply, click the Apply button at the top or bottom of this page. You'll be required to create an account or sign in to an existing one.

If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to Accessibility (accommodation requests only; other inquiries won't receive a response).

Regular or Temporary:

Regular

Language Fluency: English (Required)

Work Shift:

1st Shift (United States of America)

Please review the following job description:

Oversee the security architecture, design, and deployment of multiple information security technologies, including, managed service security providers where appropriate. Includes endpoint, application, cloud, network, artificial intelligence (AI) and machine learning (ML) systems, and data protection design, documentation, and support of effective security engineering and security operations. Responsible for the implementation and management of cyber security in all public cloud environments, including security for generative AI services and large language model (LLM)–based applications. Interface with multiple Line of Business CIO's to develop and support innovative security solutions to minimize risk and streamline business processes. Maintain responsible oversight of a dedicated team that will design security capabilities and operationally feasible solutions to enable the business and protect the enterprise.

Responsible for delivering security architecture and engineering outcomes for the Cybersecurity organization and the Enterprise. Work with stakeholders across the organization to securely meet the requirements of business initiatives and is a technical authority on cloud, artificial intelligence (AI), and cybersecurity architecture for the Enterprise. Oversee a managed security service provider who will be supporting execution of program efforts.

KEY RESPONSIBILITIES

• Manage vendor teams and drive discussions with various project teams, developers, and operations teams to ensure compliance with security guidelines and standards.

• Experience with cyber security implementations within a major Cloud operating environment

• Experience developing and budgeting for cyber defense strategies that include dependencies on defense in depth principles.

• Planning, studying and then designinga resistantsecurity architecture for various IT initiatives.

• Researching and implementing updated security standards, systems, and best practices.

• Anticipating potential security threats by intaking strategic threat intelligence and acting upon ittimely

• Managingtechnologyroad maps and security improvement/maturity projects.

• Document and address organization's information security, cybersecurity architecture, and systems security engineering requirements throughout the acquisition life cycle.

• Ensure thatacquiredor developed system(s) and architecture(s) are consistent with organization's cybersecurity architecture guidelines.

• Identify and prioritize critical business functions in collaboration with organizational stakeholders.

• Define and document how the implementation of a new system or new interfaces between systemsimpactsthe security posture of the current environment.

• Evaluate securityarchitecturesand designs todeterminethe adequacy of security design and architecture proposed or provided in response to requirements contained in acquisition documents.

• Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.

• Experience in multi cloud security architecture. Primary focusinAzure.

• Drive security controls with information security standards such as: NIST 800-53, NIST CSF, NIST AI Risk Management Framework (AI RMF), ISO/IEC 42001, OWASP Top 10 for LLMs, SOX, SOC2, and CIS Controls.

• Understanding of Identity and Secrets Management, Logging and Monitoring, Application Security, Vulnerability Management, AI/ML Security (model risk, prompt injection defenses, training-data protection, and responsible AI controls) and Threat Detection and Response.

• Lead the security architecture for AI and machine learning platforms, generative AI services, and large language model (LLM)–based applications, including controls for model integrity, prompt injection, training-data protection, model supply chain risk, and unauthorized model or API access.

• Establish and govern enterprise standards for the secure adoption of AI, including third-party AI services, copilots, and embedded AI capabilities within SaaS platforms; partner with Legal, Privacy, and Compliance to operationalize Responsible AI and acceptable-use policies.

• Partner with Data, Analytics, and AI Engineering teams to embed security-by-design and privacy-by-design into AI/ML pipelines, training datasets, model development, deployment, and ongoing monitoring for drift, abuse, and emerging threats.

• Evaluate and integrate AI-augmented security tooling (e.g., AI-driven detection and response, vulnerability management, identity analytics, and SOC automation) into the enterprise security architecture, while managing risks such as model bias, hallucination, and explainability.

• Anticipate AI-specific threats (e.g., adversarial machine learning, model theft, data poisoning, prompt injection, deepfakes) and translate emerging AI regulations and standards into actionable security architecture and engineering requirements.

EDUCATION AND EXPERIENCE

• Bachelor’s Degree

• 6+ years of cyber security architecture and engineering leadership experience

• Previous leadership experience in medium sized to large teams

• Knowledge of cybersecurity governance, design, and operations

• Hands-on experience securing AI/ML systems, generative AI platforms, or LLM-based applications, with familiarity in AI security frameworks (e.g., NIST AI RMF, ISO/IEC 42001, OWASP Top 10 for LLMs, MITRE ATLAS).

• Awareness of evolving AI regulation and guidance (e.g., EU AI Act, U.S. federal AI executive actions, state-level AI laws) and the ability to translate them into enterprise security requirements.

FUNCTIONAL SKILLS

• Strong ability to communicate via written and verbal communication in both formal and casual situations.

• Ability to effectively communicate technical information and translate it between stakeholders.

• Working knowledge of AI and machine learning concepts, with the ability to communicate AI risk, security trade-offs, and Responsible AI principles to both technical and business stakeholders.

• Comfort using AI-assisted tools to accelerate architecture, engineering, and security operations work, with sound judgment for verifying outputs and managing model limitations.

• Experience managing teams and vendors, driving SLAs;Experience withmanaging security with SaaS providers.

• Self-starter who takes ownership and responsibility for prudent service delivery

• Works independently with minimal guidance to drive projects to completion, while also working collaboratively with the team to achieve strategic goals.

• Professional, clear, and concise verbal and written communication to internal customers, subject matter experts, upper management, and other audiences

• A collaborative team player who willsolicitand offer input and support decision-making.

• Position requires access to sensitive confidential material; Integrity and discretion are mandatory.

• Comfortable working in a continuously changing, fast-paced environment - balancing multiple priorities, special projects, and other activities.

General Description of Available Benefits for Eligible Employees of CRC Group: At CRC Group, we're committed to supporting every aspect of teammates' well-being – physical, emotional, financial, social, and professional. Our best-in-class benefits program is designed to care for the whole you, offering a wide range of coverage and support. Eligible full-time teammates enjoy access to medical, dental, vision, life, disability, and AD&D insurance; tax-advantaged savings accounts; and a 401(k) plan with company match. CRC Group also offers generous paid time off programs, including company holidays, vacation and sick days, new parent leave, and more. Eligible positions may also qualify for restricted stock units and/or a deferred compensation plan.

CRC Group supports a diverse workforce and is an Equal Opportunity Employer that does not discriminate against individuals on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. CRC Group is a Drug Free Workplace.

EEO is the LawPay Transparency Nondiscrimination ProvisionE-Verify