Liberty Mutual
GenAI Security Platform Architect
Job Description
Description 
We deliver our customers peace of mind every day by helping them protect what they value most. Our passion for placing the customer at the center of everything we do is driving a transformational shift at Liberty Mutual. Operating as a tech startup within a Fortune 100 company, we are leading a digital disruption that will redefine how people experience insurance.
At Liberty, you’ll thrive in a hybrid setting that fosters in-person collaboration, innovation and growth. This approach optimizes both remote and in-person interactions, enabling you to connect and ideate with your team and deepen valuable relationships across the company, while still enjoying the flexibility of remote work for focused tasks and projects.
This role has a hybrid work schedule (2 days onsite) for candidates based in Portsmouth, NH, Boston, MA, Plano, TX, Indianapolis, IN and Columbus, OH.
Job Introduction:
The Security Architecture & Innovation team within the Global Cybersecurity (GCS) organization is seeking a seasoned GenAI Security Platform Architect with expertise in securing AI/ML systems and GenAI applications. The candidate will define and drive the security architecture, controls, and governance for our AI platforms, models, and AI-enabled products. This role partners closely with Data Science, Enterprise Data & Analytics Technology, MLOps, Platform/Cloud, Legal/Privacy, and Global Cybersecurity Governance Risk and Compliance to design secure-by-design AI solutions that are resilient to adversarial threats and meet evolving regulatory requirements.
About the job:
- Architecture and strategy.
- Define and own the end-to-end security architecture for AI/ML systems (training, fine-tuning, inference/serving, RAG, agents, and integrations).
- Develop and maintain reference architectures and guardrails for common AI patterns (e.g., RAG with vector databases, multi-agent workflows/orchestration, LLM API integrations, on-prem vs. cloud model hosting).
- Build and maintain an AI security controls library mapped to frameworks (e.g. NIST AI RMF, OWASP Top 10 for LLM Apps, MITRE ATLAS).
- Risk management.
- Establish risk appetite and control requirements across the AI lifecycle; perform design reviews and signoffs for AI initiatives.
- Define security baselines, secure configurations, and kill-switch/rollback strategies for AI components.
- Continuously assess threat landscape and update risk models specific to AI/ML, GenAI, and insurance sector adversaries.
- Secure AI development and MLOps.
- Integrate security into the ML/LLM SDLC and CI/CD pipelines (dataset curation, feature engineering, model training, evaluation, packaging, registry, deployment).
- Partner across Global Cybersecurity, Global Digital Solutions (Cloud/Platforms/Infrastructure/Endpoint), and Liberty IT to enforce least privilege, secrets management, and policy-as-code for AI pipelines and serving infrastructure.
- Champion DevSecOps automation for AI projects by embedding security controls and testing directly into development pipelines, reducing reliance on manual approvals and enabling teams to deliver secure AI solutions quickly and efficiently.
- Adversarial robustness and safety.
- Recommend/consult on adversarial testing and red teaming for AI systems; coordinate jailbreak/prompt-injection testing, model evasion scenarios, and safety evaluations.
- Recommend and validate defenses (input/output filtering, content moderation, prompt hardening, retrieval sanitization, adversarial training, rate limiting/abuse detection).
- Drive monitoring for model drift, anomaly detection, and harmful output prevention; set response strategies and develop response playbooks for AI incidents.
- Data protection and privacy.
- Ensure data minimization, classification, encryption, and access controls for training and inference data (incl. embeddings and vector stores).
- Ensure compliance with global privacy regulations (CCPA, NYDFS, GDPR, etc.) in AI/ML contexts.
- Governance and compliance.
- Recommend/consult with GRC on the establishment AI security governance, policies, and standards.
- Define control objectives and measurable KPIs; support vendor/security assessments for AI services and model providers.
- Enablement and leadership.
- Evaluate and select AI security tools; manage POCs and guide build-vs-buy decisions.
- Mentor teams on best practices in AI/ML security; help build internal capability across engineering, risk, and product functions.
Qualifications
- Bachelor’s degree in Computer Science, Engineering, Information Security, or equivalent experience.
- Minimum 8+ years in Cybersecurity with 3+ years focused on securing AI/ML systems or GenAI applications in production.
- CISSP certification required
- Demonstrated deep technical experience designing secure architectures for:
- ML pipelines and MLOps platforms (data ingestion, feature stores, training, model registry, deployment, monitoring).
- GenAI workloads (LLM APIs, fine-tuning, RAG, vector databases, agent frameworks).
- Cloud-native environments (containers/Kubernetes, serverless, service mesh, VPC/network security).
- Strong knowledge of AI-specific threats and mitigations: data poisoning, model inversion/membership inference, model theft/IP protection, adversarial examples, prompt injection/jailbreaks, exfiltration via outputs, and LLM supply chain risks.
- Practical familiarity with security frameworks and standards: NIST AI RMF, OWASP Top 10 (including LLM apps), MITRE ATT&CK and ATLAS, or similar.
- Hands-on experience implementing:
- Identity and access controls for AI services (service principals, fine-grained IAM, token and key management).
- Secrets management (Vault, KMS/Key Vault/Cloud KMS/HSM), encryption-in-transit/at-rest, data tokenization, DLP.
- Monitoring/logging for AI systems (model telemetry, prompt/response logging with privacy controls, drift/anomaly detection).
- Demonstrated ability to quickly learn and build expertise in diverse and emerging technologies and new architectural concepts and principles
- Strong influencing and consensus building skills, and the adaptability to respond to change quickly
- Strong communications skills, both written and verbal
- Ability to effectively collaborate with all levels of the organization with diverse backgrounds
- Strong desire to drive change, and ability to adapt to change quickly
- Excellent communication skills; ability to influence architecture and risk decisions across engineering, product, and executive stakeholders.
Preferred qualifications
- Experience with enterprise GenAI platforms and tools:
- MLOps: SageMaker, Vertex AI, Cortex, AWS ML, Azure ML, MLflow, KServe/Seldon/Triton, Feast/Tecton HuggingFace.
- LLM/GenAI: Azure OpenAI, AWS Bedrock, OpenAI, LangChain/LangGraph/Semantic Kernel, vector DBs (Pinecone, Weaviate, FAISS/Chroma), guardrails/middleware (e.g., Llama Guard, Lakera, Protect AI, Robust Intelligence, HiddenLayer), GitHub Copilot, GitHub Copilot Coding Agent, Devin.ai, M365 Copilot, Copilot Web.
- Observability: Prometheus/Grafana, ELK/Opensearch, Splunk, Cribl; AI eval frameworks and red-team tooling.
- Advanced degree (MS/PhD) in Security, ML/AI, or related field is a plus.
How we work
- Partner-first: embed with Data Science, MLOps, and Product teams to enable speed with safety.
- Automate-by-default: codify controls in pipelines and platforms rather than relying on manual gates.
- Measurable risk management: define clear control objectives, metrics, and continuous improvement loops.
About Us
Pay Philosophy: The typical starting salary range for this role is determined by a number of factors including skills, experience, education, certifications and location. The full salary range for this role reflects the competitive labor market value for all employees in these positions across the national market and provides an opportunity to progress as employees grow and develop within the role. Some roles at Liberty Mutual have a corresponding compensation plan which may include commission and/or bonus earnings at rates that vary based on multiple factors set forth in the compensation plan for the role.
As a purpose-driven organization, Liberty Mutual is committed to fostering an environment where employees from all backgrounds can build long and meaningful careers. Through strong relationships, comprehensive benefits and continuous learning opportunities, we seek to create an environment where employees can succeed, both professionally and personally.
At Liberty Mutual, we believe progress happens when people feel secure. By providing protection for the unexpected and delivering it with care, we help people embrace today and confidently pursue tomorrow.
We are dedicated to fostering an inclusive environment where employees from all backgrounds can build long and meaningful careers. By actively seeking employee feedback and amplifying the voices of our seven Employee Resource Groups (ERGs), which are open to all, we create an environment where every individual can make a meaningful impact so we continue to meet the evolving needs of our customers.
We value your hard work, integrity and commitment to make things better, and we put people first by offering you benefits that support your life and well-being. To learn more about our benefit offerings please visit: https://LMI.co/Benefits
Liberty Mutual is an equal opportunity employer. We will not tolerate discrimination on the basis of race, color, national origin, sex, sexual orientation, gender identity, religion, age, disability, veteran’s status, pregnancy, genetic information or on any basis prohibited by federal, state or local law.
Fair Chance Notices
 
                             
            	                	 
            	                	 
								