Alight is looking for a Security & AI Governance Lead to establish and oversee enterprise-wide security practices and AI governance frameworks to protect data, systems, and AI applications while ensuring responsible and compliant use of emerging technologies.
Requirements
- 5+ years of experience in security, risk management, or governance roles, ideally with exposure to AI/ML systems.
- Strong understanding of enterprise security architecture, data protection, and AI governance principles.
- Familiarity with frameworks such as ISO/IEC 27001, NIST Cybersecurity Framework, NIST AI RMF, and privacy regulations.
- CISSP, CISM, CISA, CIPP, or equivalent
Responsibilities
- Develop and enforce security policies, procedures, and technical guidelines across systems and data environments.
- Overseeing security risk assessments, threat modeling, and vulnerability analysis for enterprise systems and AI platforms working with the applicable security and technology team.
- Oversee analysis on source system data and models to give visibility to hidden security risks and recommend mitigation strategies.
- Prepare and present dashboards and technical reports summarizing security trends, incidents, and performance metrics.
- Collaborate with stakeholders to plan, deploy, and execute the enterprise security strategies tied to AI development and usage.
- Lead the design and implementation of AI governance frameworks, ensuring ethical, secure, and compliant use of AI technologies.
- Partner with legal, compliance, and data teams to align AI practices with regulatory requirements (e.g., GDPR, CCPA, NIST AI RMF).
Other
- Serve as the primary security contact for business units, balancing risk and reward in application development and third-party engagements.
- Act as a liaison between business, IT, and enterprise architecture teams, ensuring alignment on security and governance priorities.
- Assist teams in implementing data security technologies, compliance requirements, and secure development practices.
- Partner with enterprise architects to design and evolve secure information and AI architectures.
- This role supports services provided to the federal government or federal government contractor and therefore requires US Citizenship.
