AI Security Architect

Job description

Company and benefits

Job ID

PRINC018770

Employment Type

Regular

Work Style

hybrid

Location

Lowell,MA,United States

Travel

Up to 25%

Role

AI Security Architect

Why UKG:

At UKG, the work you do matters. The code you ship, the decisions you make, and the care you show a customer all add up to real impact. Today, tens of millions of workers start and end their days with our workforce operating platform. Helping people get paid, grow in their careers, and shape the future of their industries. That’s what we do.

We never stop learning. We never stop challenging the norm. We push for better, and we celebrate the wins along the way. Here, you’ll get flexibility that’s real, benefits you can count on, and a team that succeeds together. Because at UKG, your work matters—and so do you.

Job Description

We are looking for a Principal AI Security Architect to join UKG's Application Security Architecture team. This is a high-impact, strategic position where you will serve as the leading voice on AI security. This is a hands-on leadership role, research-oriented architect who can help define how UKG evaluates, designs, builds, and governs secure AI-enabled systems. You will research emerging AI models, agentic systems, model integration patterns, AI-related security issues, and responsible AI practices, then translate that research into practical architecture patterns, secure design guidance, reusable harnesses, and team-ready tools. You will bring a new AI-driven capability into the security review process, improving the speed, consistency, and depth of application security architecture reviews while ensuring appropriate controls for critical AI risks. You will work closely with security architects, application teams, product engineering, platform teams, and governance stakeholders to ensure AI is adopted securely, responsibly, and at enterprise scale.

##### Responsibilities

• Provide architectural leadership and technical direction for secure AI adoption across application, platform, and product engineering teams, with a focus on practical security design, responsible AI, enterprise risk reduction, and scalable review processes.
• Research AI models, AI application architectures, agentic workflows, retrieval-augmented generation, model orchestration, prompt engineering, model context protocols, and emerging AI security issues to identify risks and actionable mitigations for UKG systems.
• Develop, document, and maintain reusable AI security architecture patterns, reference designs, control patterns, review checklists, and decision frameworks that can be consistently applied across multi-tenant SaaS and cloud environments.
• Design and build reusable security harnesses, prototypes, automation, and internal tools that help the security team review AI-enabled applications faster, validate control effectiveness, identify design gaps, and improve review quality.
• Integrate AI capabilities into the application security architecture review process, including opportunities to use AI-assisted analysis, secure design generation, threat modeling support, control mapping, code and configuration review, and evidence summarization.
• Evaluate AI development tools and coding assistants such as GitHub Copilot, Claude Code, OpenAI Codex, and similar platforms, and define secure usage patterns, guardrails, and review practices for enterprise engineering teams.
• Partner with internal security, engineering, product, privacy, legal, compliance, and governance teams to align AI security architecture with business requirements, secure SDLC expectations, responsible AI principles, and customer trust obligations.
• Lead threat modeling and security design reviews for AI-enabled features, machine learning systems, data pipelines, model integrations, plugins, agents, vector databases, prompt chains, and third-party AI services.
• Apply and interpret relevant AI and security standards, frameworks, and risk models, including OWASP Top 10 for LLM Applications, OWASP Machine Learning Security Top 10, MITRE ATLAS, NIST AI RMF, secure SDLC practices, and other applicable industry guidance.
• Define security requirements for data protection, identity and access management, authorization, auditability, model input and output handling, prompt injection resistance, jailbreak resilience, sensitive data exposure prevention, model supply chain risk, and secure integration with enterprise systems.
• Create proof-of-concepts and production-quality accelerators using programming languages and platforms such as Python, Java, APIs, cloud services, CI/CD tooling, and AI development frameworks to support rapid experimentation and delivery.
• Stay current on AI security research, model capabilities, adversarial techniques, AI governance practices, and emerging regulatory and industry expectations; translate findings into practical guidance for UKG teams.
• Mentor engineers, security architects, developers, and security champions on secure AI design, responsible AI practices, secure coding with AI tools, threat modeling, and effective use of security automation.
• Communicate complex AI security risks, design tradeoffs, patterns, and recommendations clearly to senior management, architects, engineering teams, and cross-functional stakeholders.

Qualifications

• Bachelor's degree in Computer Science, Engineering, Machine Learning, Artificial Intelligence, Cybersecurity, or a related field, or equivalent work experience.
• Minimum 12 years of software engineering, security architecture, security engineering, or related experience, with 4\+ years of hands-on experience in machine learning, AI, or AI-enabled application development.
• Demonstrated experience researching, designing, building, or reviewing AI/ML systems, including model integration, AI application architecture, data pipelines, evaluation workflows, and AI-enabled product features.
• Strong hands-on development skills with Python and Java, with the ability to rapidly prototype, build, test, and operationalize applications, automations, harnesses, APIs, and internal tools.
• Practical experience using AI development and productivity tools such as GitHub Copilot, Claude Code, OpenAI Codex, and comparable AI-assisted coding, analysis, and automation platforms.
• Strong understanding of application security architecture, secure design, secure SDLC, threat modeling, code review, security testing, vulnerability management, and DevSecOps practices.
• Knowledge of AI security risks such as prompt injection, insecure plugin or tool use, training data poisoning, model inversion, sensitive data disclosure, insecure output handling, excessive agency, model supply chain risk, and evaluation bypass.
• Experience applying security and AI risk frameworks such as OWASP, MITRE ATLAS, NIST, ISO, and responsible AI or secure AI governance practices.
• Experience designing security controls for authentication, authorization, federation, OAuth/OIDC, MFA, cryptography, auditing, API security, secrets management, data security at rest and in transit, and cloud-native architectures.
• Experience with cloud platforms such as Google Cloud, AWS, or Azure, including AI/ML services, identity and access patterns, logging, monitoring, and security capabilities.
• Ability to convert research into practical reusable patterns, reference architectures, standards, engineering guidance, review templates, and automation that improve security team efficiency.
• Excellent written and verbal communication skills, with the ability to influence senior leaders, partner with engineering teams, and explain AI security risks in business, architectural, and engineering terms.
• Strong collaboration and leadership skills, including the ability to mentor others, drive cross-functional alignment, and deliver results in a fast-moving product engineering environment.
• Desirable certifications or demonstrated equivalent expertise in areas such as CISSP, CSSLP, CCSP, cloud security, machine learning, AI engineering, or responsible AI governance.

Company Overview:

UKG is the Workforce Operating Platform that puts workforce understanding to work. With the world's largest collection of workforce insights, and people-first AI, our ability to reveal unseen ways to build trust, amplify productivity, and empower talent, is unmatched. It's this expertise that equips our customers with the intelligence to solve any challenge in any industry — because great organizations know their workforce is their competitive edge. Learn more at ukg.com.

Equal Opportunity Employer

UKG is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, disability, religion, sex, age, national origin, veteran status, genetic information, and other legally protected categories.

View The EEO Know Your Rights poster

UKG participates in E-Verify.

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Disability Accommodation in the Application and Interview Process

For individuals with disabilities that need additional assistance at any point in the application and interview process, please email [email protected].

The pay range for this position is $163,900\.00 to $235,550\.00 . The actual base pay offered may vary depending on skills, experience, job-related knowledge and work location. In addition to base pay, employees may be eligible to participate in a performance-based bonus plan and to receive restricted stock unit awards as part of total compensation. Learn more about UKG’s benefits and rewards at https://www.ukg.com/about-us/careers/benefits

NOTICE ON HIRING SCAMS

UKG will never ask you for a copy of your driver’s license, social security card, or passport during a job inter

ABOUT OUR JOB DESCRIPTIONS

All job descriptions are written to accurately reflect the open job and include general work responsibilities. They do not present a comprehensive, detailed inventory of all duties, responsibilities, and qualifications required for the job. Management reserves the right to revise the job or require that other or different tasks be performed if or when circumstances change.