POSITION OVERIVEW
Fidelity National Financial (FNF) is seeking a highly skilled and security-focused AI Security Architect to lead the secure design and deployment of AI solutions across the enterprise. This role will be responsible for conducting threat modeling using OCTAVE (Operationally Critical Threat, Asset, and Vulnerability Evaluation), defining security requirements, and collaborating with business and development teams to ensure secure integration of AI technologies.
The Product Security Architecture team is dedicated to making our products and technologies as secure as possible. We report into the CISO, but work closely with development teams, product teams, and others across the organization to integrate security into the product lifecycle from design through deployment. Our colleagues depend on us to be application, network, and host security pros. We specialize in defining security requirements, performing application security assessments, and providing developers with remediation advice. On any given day we're pulled in to evaluate a new system, review a proposed network change, or provide guidance on application security/coding best practices.
LOCATION
- This role sits 100% remote, occasional travel to our corporate headquarters in Jacksonville, FL may be required up to 5%.
DUTIES & RESPONSIBLITIES
- Lead the secure architecture design of AI/ML systems across cloud and hybrid environments.
- Conduct OCTAVE-based threat modeling for AI products, CI/CD pipelines, and infrastructure-as-code.
- Develop and maintain technical security requirements and ensure their integration throughout the development lifecycle.
- Create and maintain architecture diagrams, security design documents, and architecture decision records.
- Represent the Office of the CISO in evaluating technology initiatives and defining advanced cybersecurity controls aligned with company policies and industry standards.
- Demonstrate deep expertise in Azure and either AWS or GCP, including native security services and cloud governance.
- Collaborate with software and infrastructure architects to propose secure solutions, create proofs-of-concept, and provide strategic technical direction.
- Build and sustain strong relationships with development and infrastructure teams, aligning them with the overall cloud and application security strategy.
- Translate complex security concepts into clear guidance for both technical and non-technical stakeholders.
- Develop security-related user stories and product-specific threat models for AI systems and supporting infrastructure.
- Ensure third-party cloud applications comply with internal security standards, controls, and principles.
- Work independently with developers, system/network engineers, product owners, and other colleagues to ensure secure design, development, and implementation of applications, infrastructure, and networks.
- Participate in engineering projects to identify threats and vulnerabilities in our cloud infrastructure, and system architecture.
- Define cybersecurity requirements and security concepts and work with engineering teams to successfully deliver business solutions.
- Perform security design reviews of cloud systems, and networks.
- Provide remediation guidance and recommendations to systems administrators.
- Write enterprise standards based on security best practices.
MINIMUM REQUIREMENTS
- Bachelor’s or master’s degree in Cybersecurity, Computer Science, Engineering, or related field.
- Requires 5+ years of experience in cybersecurity architecture or engineering, with 2+ years focused on AI/ML systems.
- Proven experience with OCTAVE threat modeling and secure cloud architecture.
- Strong understanding of AI/ML pipelines, model deployment, and inference security.
- Familiarity with DevSecOps, SSDLC, and cloud-native security tools.
- Excellent communication and documentation skills.
- Familiarity with compliance frameworks such as NIST, ISO 27001, SOC 2, NYDFS, HIPAA, and PCI-DSS.
- Relevant certifications such as CISSP, CCSP, or Certified AI Security Specialist.
- Experience working with cloud infrastructure teams to build secure solutions.
- Experience breaking down complex systems and applications to find flaws.
- Familiarity with common infrastructure vulnerabilities, threats, and attack vectors.
- Advanced knowledge of IAM principles, federation, SSO, RBAC/ABAC, and privileged access management.
PREFERRED EXPERIENCE
- Experience with AI governance frameworks (e.g., NIST AI RMF).
- Knowledge of privacy-preserving AI techniques and adversarial robustness.
- Experience in regulated industries (e.g., financial services, insurance, healthcare).
- Strong communication and leadership skills, with the ability to influence technical and non-technical stakeholders.
- Experience leading security architecture programs or initiatives at the enterprise level.
- Experience with Container security platforms.
- Experience incorporating security policy into Infrastructure as Code.
This position has the potential to earn compensation in the range of $165,000 - $225,000 annually based on location and job-related factors such as skillset and experience. Actual rate may vary within the range provided, depending on a number of factors, including skillset, experience and location. The base compensation is one component of the total rewards package offered to our employees, including optional health and welfare insurance (medical/dental/vision/life/disability); paid holidays, vacation, and sick time off; and matching 401(k) plan and matching employee stock purchase plan.
