Job Locations US-MA-Boston | US-NH-Portsmouth

ID

2026-75633

Position Type

Full-Time

Job Grade

23

Department

0055-05756 Information Technology Management

Market

Corporate Center

Referral Bonus Amount

3,500

Minimum Salary

USD $233,000.00/Yr.

Maximum Salary

USD $420,000.00/Yr.

Typical Starting Salary

$279,800 - $373,300

Travel

10%

Recruiter

Roy Ruhling

Referral Bonus Eligible?

Yes

Liberty Mutual is seeking a visionary and deeply technical leader to join our Global Cybersecurity organization. As the Sr. Director, Platform Security & Architecture, you will be at the forefront of scaling Generative and Agentic AI technologies across a global, highly regulated enterprise.

You will own the strategy and execution required to secure our foundational AI platform end-to-end, establishing the trust and resilience of our AI-driven future while enabling rapid adoption and protecting customers, data and our brand. This role is pivotal in enabling rapid AI adoption by building the guardrails, paved paths, and operating model that make security the default and fastest path for builders. You will build and lead a dedicated team and serve as the key security partner to Enterprise Architecture, Technology and business leaders.

Key Responsibilities:

• Platform Security Strategy: Develop and execute a comprehensive, end-to-end security strategy for Liberty Mutual's enterprise AI platform, ensuring alignment with business objectives and regulatory requirements.
• Team Leadership: Build, lead, and mentor a high-performing team of AI security architects and engineers, fostering a culture of innovation and excellence.
• Security Architecture: Design and implement robust security architecture, controls, and "paved paths" for the AI development lifecycle—from data ingestion and model training to deployment and continuous monitoring.
• Governance & Operations: Establish a scalable operating model for AI security, including standards for threat modeling, vulnerability management, and incident response specific to AI systems.
• Guardrails Enforcement: Drive adherence and enforcement of guardrails through technical enforcement where feasible (policy-as-code, platform controls, continuous monitoring), e.g. through embedding automated controls into pipelines and platforms.
• Offensive Testing: Partner with offensive testing team on AI security testing at scale (prompt injection/jailbreak testing, data leakage testing, adversarial evaluation harnesses, agent misuse scenarios).
• Requirements Setting: Set enforceable requirements for external models, copilots, AI SaaS, and integrators (data handling/retention, telemetry/logging, incident notification, assurance evidence, contractual clauses).
• Stakeholder Partnership: Serve as the primary security partner to the Enterprise AI platform team, as well as Engineering, Data Governance, Legal, Privacy, and BISO teams to embed security into their processes.
• Threat Innovation: Stay at the forefront of AI security research, identifying emerging threats, evaluating new tools, and pioneering innovative defensive measures to protect our data, customers, and brand.

• 10+ years of experience in cybersecurity, with a demonstrated focus on cloud, platform, or application security in a large-scale enterprise environment.
• Familiarity with NIST AI RMF, OWASP guidance for LLM applications, MITRE ATLAS (or similar), and policy-as-code/continuous control monitoring approaches.
• Proven experience building and leading high-performing technical security teams.
• Deep expertise in designing and implementing security architecture for complex technology platforms (e.g., cloud, data, or AI/ML platforms).
• Direct experience addressing the unique security challenges of AI/ML systems (e.g., prompt injection, model theft, data poisoning, adversarial attacks).
• Familiarity with MLOps, LLM architecture, and the AI supply chain.
• Exceptional strategic thinking and communication skills, with a proven ability to influence and collaborate with stakeholders from senior executives to junior engineers.
• Experience working in a regulated industry (e.g., financial services, insurance) is highly preferred.
• Bachelor's or Master's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.

10%

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.