Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Plain Concepts

AI Security Governance Architect

Plain Concepts

AI Security Governance Architect working remotely to enhance AI security governance for clients. Collaborating with cross-functional teams to implement AI-related cybersecurity controls and frameworks.

Posted 5/18/2026full-timeRemote • 🇪🇸 SpainSeniorLeadWebsite

Tech Stack

Tools & technologies
AWSAzureCloudCyber SecurityGoogle Cloud PlatformSDLC

About the role

Key responsibilities & impact
  • Support the client’s AI Security Governance Program by defining, operationalizing and continuously improving the cybersecurity control framework for AI, GenAI and agentic AI use cases.
  • The role will work with security, architecture and business teams to ensure AI initiatives are registered, assessed, governed and secured across their lifecycle.
  • The profile will act as the cybersecurity subject matter expert for AI governance, complementing the project manager and helping translate AI-related risks into practical controls, processes, requirements, evidences and decision criteria.
  • Define and mature the security governance model for AI systems, including intake, registration, risk classification, control mapping, approvals, exceptions, monitoring and periodic reassessment.
  • Align the governance model with recognized frameworks such as NIST AI RMF, NIST Generative AI Profile, ISO/IEC 42001, OWASP Top 10 for LLM Applications, and local relevant ruling as EU AI Act obligations where applicable.
  • Assess AI and GenAI use cases from a cybersecurity perspective, covering various risks including access control, logging, incident response, model exposure, data leakage, and security requirements.
  • Translate risks into practical security controls, including policies, technical requirements, architecture patterns, guardrails, evidence requirements, control owners and acceptance criteria.
  • Work with existing tools to ensure the governance model is practical, including mapping tool capabilities and defining required data fields.

Requirements

What you’ll need
  • 8+ years in cybersecurity, with strong experience in security governance, security architecture, risk management or AppSec/CloudSec.
  • Real understanding of AI/GenAI security risks, especially LLM application risks, prompt injection, data leakage, model supply chain, AI agent permissions, RAG security, model/API exposure and third-party AI usage.
  • Ability to build governance that works operationally, not just policy documents.
  • Experience with enterprise control frameworks
  • Excellent documentation and communication skills, with the ability to produce executive-ready material and technical control definitions.
  • Strongly desirable:
  • Experience with one or more of:
  • - AI governance programs
  • - AISPM Experience
  • - GenAI application security reviews
  • - M365 Copilot / enterprise copilots
  • - AI agent governance
  • - ML/LLM model risk management
  • - Data Security Posture Management
  • - Cloud security architecture
  • - Secure SDLC / DevSecOps
  • - Third-party AI vendor risk
  • - GRC tooling and control evidence automation
  • - SOC monitoring for AI-related threats
  • Experience with tools such as HiddenLayer, Sentra, Zenity, Wiz, Microsoft Purview, Defender, CSPM/CWPP, DLP, SIEM/SOAR, cloud-native security tooling or GRC platforms would be valuable.
  • Certifications / knowledge:
  • Useful but not mandatory:
  • - CISSP, CISM, CRISC or equivalent
  • - Cloud security certifications: AWS, Azure, GCP, CCSP
  • - AI governance / AI risk training
  • - Privacy knowledge: GDPR, DPIA, data classification
  • - Familiarity with EU AI Act requirements for deployers of high-risk AI systems, including governance, monitoring, human oversight and logging obligations where applicable.

Benefits

Comp & perks
  • Salary determined by the market and your experience 🤑
  • Flexible schedule 35 Hours / Week 😎
  • Fully remote work (optional) 🌍
  • Flexible compensation (restaurant, transport, and childcare) ✌
  • Fully free health insurance, with a co-payment for dental services 🚑
  • Individual budget for training or equipment and free Microsoft certifications 📚
  • English lessons 🗽
  • Birthday day off 🌴🥳
  • Monthly bonus for electricity and Internet expenses at home 💻
  • Discount on gym plan and sports activities 🔝
  • Plain Camp (annual team-building event) 🎪
  • Extra perks: events attendance and speakers, welcome pack, baby basket, Christmas basket, discount portal for employees ➕ The pleasure of always working with the latest technological tools!

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cybersecuritysecurity governancesecurity architecturerisk managementAppSecCloudSecAI security risksdata leakagesecure SDLCDevSecOps
Soft Skills
documentation skillscommunication skillsexecutive-ready material productionability to build operational governance
Certifications
CISSPCISMCRISCAWS certificationAzure certificationGCP certificationCCSPAI governance trainingGDPR knowledgeDPIA knowledge