Principal Security Architect – GenAI and Emerging Technologies – Remote

Principal Security Engineer – IS06BE We’re determined to make a difference and are proud to be an insurance company that goes well beyond coverages and policies. Working here means having every opportunity to achieve your goals — and to help others accomplish theirs, too. Join our team as we help shape the future. The Hartford’s Information Protection (THIP) organization is looking for talented professionals to join a high‑performing team that is charged with designing, implementing and maintaining modernized and advanced information security capabilities. As the Principal Security Engineer (Architect), this position will set the security direction and requirements for the company’s secure use of AI / GenAI capabilities, while leading the charge in evaluating, recommending and helping implement new and emerging security capabilities. This role reports directly to the Chief Information Security Officer (CISO) and is an essential leadership position that partners closely with other technology leaders, providing the right person the opportunity to help shape our future security practices. We are looking for a strong technical leader who is adept at charting future direction, passionate about security, and is committed to driving innovative solutions.

Responsibilities

As the Principal Security Engineer for GenAI and Emerging Technologies, you’ll be responsible for:

• Partnering with key stakeholders and technology partners to provide leadership direction and support for our company’s continued GenAI priorities, bringing a security perspective that balances with business imperatives and delivery time frames.
• Designing and developing architectures, frameworks, and requirements for the secure consumption of AI / GenAI capabilities across various patterns and usages, including internally maintained models, as well as Software as a Service (SaaS) solutions.
• Performing threat modelling and risk assessments against GenAI use cases, recommending security requirements, and monitoring adherence with guidance.
• Working with development teams, data scientists and security professionals to design and implement security measures that protect AI models against various threats and vulnerabilities, including prompt injections, inference attacks, data poisoning, model thefts, and others.
• Representing the organization in leadership discussions, risk governance councils, and various AI / GenAI working teams.
• Leading the cybersecurity team’s efforts to continuously monitor, assess and evaluate emerging security technologies, partnering with the enterprise Innovation team to proactively identify and recommend potential new capabilities.

Qualifications

• 5 years’ experience as a security professional with a focus on Security Architecture responsibilities related to cloud security, threat modelling, identity and management and authentication, network security, software engineering, cryptography, penetration testing, mobile security, and/or infrastructure services.
• Cloud Security Engineering:

Experience designing and deploying robust cloud security architectures for AI/ML workloads across AWS and Google Cloud.

• AI/ML Security Leadership:

Proven expertise in securing Generative AI systems, with successful implementation of AI security frameworks.

• Generative AI & LLMs:

Hands‑on experience leading AI/ML initiatives using large language models (LLMs) and platforms such as GCP Vertex AI, AWS Bedrock, Sage Maker, ChatGPT, etc.

• Cross‑Platform AI Security:

Deep knowledge of securing AI applications and platform products across major cloud providers (AWS, GCP, Microsoft Azure) and AI ecosystems, including CoPilot and other enterprise‑grade LLMs.

• Threat Modeling & Risk Mitigation:

Subject matter expert in identifying and mitigating AI‑specific attack surfaces and threats.

• End‑to‑End AI Security Strategy:

Demonstrated ability to lead the development and execution of comprehensive AI/ML security strategies, integrating secure model development, deployment, and monitoring practices.

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Cloud and AI‑specific certifications are highly desirable.

Can… Apply tot his job Apply To this Job