CYE seeks Junior Cybersecurity Architect focusing on governance, risk analysis, and security processes. Work with security leaders, engineering teams, and customers to develop mitigation plans.
About the role
- Data Security Engineer responsible for safeguarding S&P Global’s AI and ML systems. Developing security strategies and collaborating with teams for compliance and risk management.
Responsibilities
- Develop and implement comprehensive AI/ML security strategies, policies, standards, and guidelines to protect organizational assets and ensure the secure operation of AI and ML systems.
- Build security control framework and generic reference architectures for GenAI applications.
- Assist with identifying security requirements to be followed by LoB/Dev teams when building GenAI applications.
- Conduct threat modeling exercises to identify potential security risks and vulnerabilities in AI systems, working closely with AI development teams to integrate security into the design and development processes.
- Provide thought leadership and creativity to mature Gen AI security governance embedding into our existing cyber security risk appetite framework.
- Perform security assessments on AI applications and systems to identify and address vulnerabilities.
- Develop and implement testing methodologies to evaluate the security posture of AI models and frameworks.
- Develop configuration hardening guidelines for Cloud Services including native Generative AI/ML services such as AWS SageMaker, SageMaker Notebooks, Bedrock, Kendra, OpenSearch, Lambda, Azure Cognitive Services, Open AI, GCP Vertex AI etc.
- Stay updated on relevant regulations and standards related to AI security and ensure compliance.
- Collaborate with legal and compliance teams to align AI systems with industry and regulatory requirements.
Requirements
- 1–5 years of experience in cyber security, software engineering, data engineering, ML engineering, data science.
- Bachelor’s or Master’s degree in Computer Science, Engineering, Data Science, or equivalent practical experience.
- Experience with CI/CD, code reviews, and modern engineering best practices.
- Strong programming experience in Python (preferred) or equivalent languages.
- Solid understanding of LLM/GenAI fundamentals: prompting, embeddings, vector search, RAG, and basic agentic patterns (tool use, planning, orchestration).
- Experience running production systems or data pipelines on AWS/Azure/GCP, using containers, serverless, and managed storage/services.
- Hands-on familiarity with observability tools (OpenTelemetry, Prometheus, Grafana, ELK, etc.) across logs, metrics, and traces.
- Comfort working with structured and unstructured data; strong SQL plus experience with Pandas/Spark/dbt or similar frameworks.
- Ability to reason clearly about reliability, performance, and cost trade-offs.
- Strong collaboration and communication skills; ability to translate complex concepts for platform, product, data, security, and compliance teams.
Benefits
- Health & Wellness: Health care coverage designed for the mind and body.
- Flexible Downtime: Generous time off helps keep you energized for your time on.
- Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills.
- Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs.
- Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in-class benefits for families.
- Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior leader responsible for designing and executing a corporate security program while collaborating with cybersecurity, IT and risk teams at LPL Financial.
Principal Security Engineer leading cyber security efforts and providing technical direction at Intact. Focusing on risk mitigation and mentoring security teams in a hybrid environment.
Lead Information Security Engineer managing inbound web application security to protect enterprise web assets at Wells Fargo. Design and implement security measures against application - layer attacks.
Operational Network and Security Manager overseeing technical teams and network security for a major client in Rennes. Engaging in tasks like project management and supplier coordination.
EU Project Manager blending project management and information security for EU - funded cybersecurity projects in Greece. Responsible for compliance, risk assessment, and stakeholder communication.
Personnel Security Specialist at PSI reviewing investigative documentation for federal and contractor employees. Ensuring security and compliance with federal guidelines in background investigations and data management.
FBI Personnel Security Specialist conducting security investigations and risk analysis for national security. Overseeing security program functions and managing personnel as needed.
Information Security Engineering Intern at Corsearch focusing on cybersecurity tasks and assisting the security engineering team. Engaging with multi - cloud security monitoring and simulated phishing campaigns.
CISO overseeing IT and security strategy at Binance, a top cryptocurrency exchange. Ensuring compliance and enhancing security while driving technology alignment with business objectives.