Qualifications- 8-12 years in solutions architecture; T-shaped profile with deep expertise across both AI/ML systems and security architecture, and enough breadth across the broader technology landscape to contribute credibly beyond the security domain when needed
- Can design agentic AI systems from scratch AND identify their attack surface without needing a security person to translate
- Comfortable getting hands dirty - uses AI-assisted development tools to prototype and validate ideas quickly; treats implementation as a thinking tool, not just a downstream deliverable
- Proactive and curious by default - tracks the AI security landscape independently, brings new ideas to the practice without waiting to be asked, and finds ways to move fast in ambiguous situations
- Deep cloud architecture experience (Azure, AWS, or GCP) with security-native design patterns: zero trust, least privilege, IAM/NHI design
- Familiarity with MITRE ATT&CK, OWASP (traditional and Agentic Top 10), NIST AI RMF - able to apply them in architecture design, not just cite them
- Strong SDLC and DevSecOps architectural knowledge - understands where security controls fit in the development lifecycle
- Executive presence - can hold a room with a CTO and CISO simultaneously and keep both engaged
- Experience in professional services, consulting, or managed services delivery - knows how to scope work, protect margin, and manage client expectations
- Demonstrated ability to define and own SOW language, acceptance criteria, and delivery phasing
- Bonus: prior experience building or growing a practice, not just delivering into one
- Bonus: experience with WWT partner ecosystem (Palo Alto Prisma, Microsoft Defender, Cisco Hypershield, Snyk)
- Bonus: delivered at an enterprise IT services firm (Accenture, Deloitte, Cognizant, KPMG, IBM)
Want to learn more about Consulting & Security Services? Check us out on our platform: https://www.wwt.com/consulting-services
https://www.wwt.com/category/security-transformation
Certain states and localities require employers to post a reasonable estimate of salary range. A reasonable estimate of the current base pay range for this position is $170,000 to $200,000 annually. Actual salary will be based on a variety of factors, including shift, location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base pay.
The well-being of WWT employees is essential. So, when it comes to our benefits package, WWT has one of the best. We offer the following benefits to all full-time employees:
- Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program
- Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement
- Paid Time Off: PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement
- Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program
We strive to create an environment where all employees are empowered to succeed based on their skills, performance, and dedication. Our goal is to cultivate a culture of belonging that encourages innovation, collaboration, and respect for all team members, ensuring that WWT remains a great place to work for All!
#LI-TB1
Role Summary WWT Digital is standing up a joint AI + Security practice with WWT Global Security Solutions and needs a Principal Architect to lead the technical design and client delivery of our AI-native security offerings portfolio. You will be the technical anchor of the practice - setting architectural standards, owning the SOW narrative, and serving as the senior escalation point across engagements - while working closely with an AI Security Consultant and AI Security Engineer as a tight, collaborative team. While the AI Security Consultant owns individual engagement discovery and requirements gathering, you own what gets built and how it gets scoped across the practice. You will operate as the senior technical resource on client engagements from architecture design through delivery oversight, and you will hold executive presence at the CISO, CTO, and CIO level. This role requires genuine dual depth in AI/ML systems and security architecture - candidates who are strong in one but weak in the other will not succeed here.
Responsibilities - Set and maintain architectural standards across all Digital + Security offerings, ensuring repeatability, quality, and margin integrity across engagements
- Own the technical SOW narrative: scope definitions, assumptions, acceptance criteria, and phasing for all practice engagements
- Lead technical discovery workshops on strategic or complex engagements - assessing current-state AI and SDLC maturity, identifying security exposure, and defining target architecture; hand off day-to-day discovery execution to the Consultant on standard engagements
- Design end-to-end solutions across CI/CD security hardening, AI vulnerability assessment, and AI-native security feedback loop engagements
- Co-present findings and solution designs alongside the Consultant at CISO, CTO, and CIO-level stakeholders - providing architectural depth and translating between engineering complexity and business risk language
- Mentor the AI Security Consultant and AI Security Engineer; serve as the senior escalation point on delivery across all engagements
- Get hands-on with prototypes and proof-of-concept implementations - leveraging AI-assisted development tools to move quickly from architectural concept to working demo, helping the practice stay ahead of a fast-moving threat and technology landscape
- Collaborate with WWT partner ecosystem (Palo Alto, Cisco, Microsoft, AWS, Snyk) to integrate partner capabilities into joint architectures
- Own the technical architecture of the AI-native security agentic system end-to-end - from initial implementation through iterative evolution; incorporating lessons from client engagements, emerging threat models, and partner capability changes into versioned architectural updates that propagate across all active and future deployments, establishing the framework within which the AI Security Engineer implements and customizes solutions for individual client engagements
- Define the architectural approach to AI governance and compliance for regulated client environments - establishing the design patterns for audit trails, model provenance, data lineage, and access logging that the AI Security Engineer implements, ensuring they hold up to regulatory scrutiny in sectors such as banking and financial services
- Actively track the evolving AI threat and adversarial research landscape - monitoring emerging attack techniques against agentic systems, evaluating their relevance to the practice's client base, and feeding findings back into architectural standards, offering updates, and team knowledge; this is an ongoing responsibility, not a background activity
- Contribute to practice growth: offering development, reusable accelerators, and go-to-market positioning in partnership with practice leadership
