Deskripsi Pekerjaan
Macquarie Group is seeking a highly skilled Security Architect to spearhead our security initiatives at the intersection of Artificial Intelligence and DevSecOps. In this pivotal role, you will act as a strategic advisor and technical lead, ensuring that our AI-driven systems are resilient, compliant, and secure by design.
You will work closely with cross-functional engineering teams to embed security directly into the software development lifecycle (SDLC). By leading advanced threat modeling initiatives and designing robust security architectures, you will safeguard our infrastructure against sophisticated threats while enabling rapid innovation in the AI space. This is a unique opportunity to join a global powerhouse and define the security standards for next-generation financial technologies.
Tanggung Jawab
- Architect secure AI and machine learning systems, ensuring data privacy and integrity.
- Lead comprehensive threat modeling exercises for complex cloud-native applications and AI pipelines.
- Drive the integration of DevSecOps practices within CI/CD pipelines to automate security gates.
- Collaborate with engineering teams to conduct deep-dive security reviews and remediation strategies.
- Establish governance frameworks for AI model deployment and secure data handling.
- Advise on cloud security best practices, specifically within AWS/Azure/GCP environments.
- Stay at the forefront of the evolving AI security landscape, identifying emerging threats and mitigation strategies.
Kualifikasi
- Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related technical field.
- Minimum 5-7 years of experience in Security Architecture or senior-level DevSecOps roles.
- Deep understanding of AI/ML model security, including adversarial machine learning and data poisoning mitigation.
- Proven track record in designing security controls for distributed cloud architectures.
- Strong programming skills in Python, Go, or Java for security automation.
- Expertise in container security (Docker, Kubernetes) and infrastructure-as-code (Terraform, CloudFormation).
- Relevant industry certifications such as CISSP, CISM, or cloud-specific security certifications.
- Excellent communication skills with the ability to influence technical and non-technical stakeholders.