Job Description SummaryWe are seeking a Principal Cybersecurity Architect to serve as a technical leader on identity and access management (IAM) for AI systems, large language models (LLMs), and autonomous AI agents. This is a position reserved for seasoned technical leaders who operate at the intersection of deep architecture expertise, enterprise-wide influence, and forward-looking security vision.
As a Principal Architect, you will not simply implement solutions — you will define the strategy, set the standards, and shape the future of how AI systems are secured across our enterprise. You will drive alignment across engineering, platform, and business teams, and your architectural decisions will have lasting impact.
You will serve as a key technical partner to our AI Foundry, embedding security-by-design principles into AI platforms and agent frameworks from inception. You will own the identity lifecycle for AI agents — from onboarding and certification through recertification and decommissioning — ensuring every AI entity operating in our environment is accountable, traceable, and governed under the principle of least privilege.
Principal Architects at our organization are recognized technical leaders. You will be expected to drive clarity in ambiguous problem spaces, influence without authority across organizational boundaries, mentor the next generation of security architects, and represent our security posture in executive and cross-functional forums. If you are energized by solving security challenges that have no playbook yet — and by building the playbook yourself — this role is for you.
Job DescriptionKey Responsibilities
Technical Leadership & Strategy
• Enterprise Vision: Act as the primary authority on AI identity security, providing guidance to executive leadership and engineering teams.
• Cross-Functional Alignment: Drive strategy across cybersecurity, cloud platforms, GRC, legal, and business units.
• Thought Leadership: Represent the organization in external forums, industry working groups, and vendor discussions regarding AI security standards.
• Architecture Ownership: Define the long-term IAM architecture for AI systems and agents in cloud and hybrid environments, establishing reusable patterns and reference designs.
AI Agent Lifecycle & Governance
• Identity Management: Oversee the full lifecycle for AI agents, from initial onboarding and cryptographic identity assignment to decommissioning.
• Accountability: Maintain an unbroken chain of human ownership and traceability for all autonomous agents.
• Access Control: Architect and enforce the Principle of Least Privilege (PoLP), Just-in Time (JIT), and Just-Enough-Access (JEA) patterns for AI workloads.
• Compliance: Partner with GRC and privacy teams to ensure AI agent governance meets rigorous regulatory requirements.
Required Qualifications
• Experience: 12+ years in cybersecurity, with a heavy emphasis on IAM.
• Senior Leadership: 7+ years in Principal/Senior Architect roles for large-scale enterprise or cloud-native environments.
• Cloud Expertise: Expert-level knowledge of AWS IAM (roles, policies, SCPs, federation) and AWS Identity Center.
• AI Security: Proficiency with AWS Bedrock Identity/AgentCore and similar frameworks.
• Conceptual Depth: Expert understanding of Zero Trust architecture and its application to AI/agentic workloads.
• Communication: Exceptional ability to distill complex technical risks for executive stakeholders.
Preferred Qualifications
• Multicloud: Experience with Microsoft Azure IAM (Entra ID, Managed Identities, Azure AI). • Governance Tools: Familiarity with IGA technologies (e.g., Saviyant) and NHI (Non Human Identity) governance.
• Agentic Security: Knowledge of LLM-specific threats (OWASP LLM Top 10) and prompt injection mitigation.
• Frameworks: Understanding of SPIFFE/SPIRE for workload identity. • Certifications: AWS Certified Security 6 Specialty, CISSP, CISM, or CCSP.
The First 12 Months: Measuring Success
• 30 Days: Establish core partnerships with AI Foundry and engineering leads.
• 60 Days: Complete an authoritative assessment of the current AI IAM risk posture.
• 90 Days: Publish the AI agent identity lifecycle framework and enterprise standards.
• 8 612 Months: Scale governance, implement recurring recertification campaigns, and integrate full IAM controls into the AI Foundry delivery pipeline.
Additional InformationRelocation Assistance Provided: No
#LI-Remote - This is a remote position
Application Deadline: July 17, 2026
For candidates applying to a U.S. based position, the pay range for this position is between $165,800.00 and $276,200.00. The Company pays a geographic differential of 110%, 120% or 130% of salary in certain areas. The specific pay offered may be influenced by a variety of factors, including the candidate9s experience, education, and skill set.
Bonus eligibility: discretionary annual bonus.
This posting is expected to remain open for at least seven days after it was posted on July 10, 2026.
Available benefits include medical, dental, vision, and prescription drug coverage; access to Health Coach from GE Vernova, a 24/7 nurse-based resource; and access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling and referral services. Retirement benefits include the GE Vernova Retirement Savings Plan, a tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions, as well as access to Fidelity resources and financial planning consultants. Other benefits include tuition assistance, adoption assistance, paid parental leave, disability benefits, life insurance, 12 paid holidays, and permissive time off.