[Hiring] Senior Security & AI Infrastructure Engineer @Element 84

Role Description

The Senior Security & AI Infrastructure Engineer is a senior technical leadership role dedicated to safely accelerating AI adoption across the company through strategic tool evaluation and governance. This role will provide the technical and security foundation required to support the company in modernizing its SDLC and business operations with AI tooling.

Leveraging deep expertise in DevSecOps, AI/ML systems security, multi-cloud architecture, and NIST 800-171, this role will audit our current AI tooling landscape, architect the secure integration of enterprise AI platforms, and revisit our tooling portfolio as the landscape evolves. The ultimate goal is to establish a unified, governed AI security boundary that protects our federal/GovTech client data while providing our teams the cutting-edge tools they demand.

Key Responsibilities

• AI Tooling and Adoption Strategy
  • Lead an immediate, formal architectural evaluation of our current AI tooling landscape – including developer tools, productivity tools, and agentic platforms, and develop a prioritized adoption roadmap.
  • Evaluate candidate AI platforms and tools against Element 84’s strict CMMC/NIST 800-171 compliance requirements, specifically assessing data-retention policies, audit telemetry, and boundary controls in coordination with our Head of Security, Compliance, and Infrastructure.
  • Present a definitive adoption strategy compliant with Zero-Trust frameworks to the Head of Security, Compliance, and Infrastructure detailing how we will securely integrate approved AI platforms into our engineering and business workflows.
• AI Platform Deployment & Tool Governance
  • Lead the technical procurement, configuration, and rollout of approved AI platform environments, verifying contractual data-handling protections.
  • Manage the AI tool portfolio: onboard approved tools, sunset redundant or non-compliant tools, and maintain a current tool inventory.
  • Architect and implement Zero Trust conditional access policies ensuring approved AI workspaces are only accessible from E84-managed laptops.
• Low-Friction Tooling Governance & Review
  • Replace ad-hoc security investigations with a standardized AI tool evaluation framework covering data classification, vendor security, authentication, audit logging, and plan-tier implications.
  • Engage with and potentially lead the design and formalization of a low-friction AI tooling review process.
  • Collaborate directly with software engineering, project management, and business operations teams to develop secure guidelines for AI-assisted workflows.
• Secure Infrastructure Implementation & DevSecOps
  • Execute the deployment of approved AI architectures, building out any necessary AWS/Azure cloud infrastructure, API gateways, and network boundaries.
  • Integrate the AI platforms directly with JumpCloud/Google Workspace to enforce dynamic Role-Based Access Control (RBAC).
  • Configure and maintain observability pipelines for AI platform activity to support audit, incident investigation, and compliance reporting.
• CMMC Compliance & Continuous Monitoring
  • Serve as the primary technical author for the organization’s System Security Plan (SSP) and Plan of Action and Milestones (POA&M).
  • Work with the Head of Security, Compliance, and Infrastructure as we move forward with formal CMMC compliance.
  • Implement robust logging, threat detection, and telemetry for all API calls.
• Supporting Client Systems
  • Provide expert information security engineering and guidance for client systems, ensuring that security requirements are seamlessly integrated into architecture and system designs.

Qualifications

• 7+ years in Cloud Security, DevSecOps, and Infrastructure Architecture.
• Bachelor’s degree in Computer Science, Engineering, Information Systems, Cybersecurity, or related technical discipline.
• Deep architectural expertise in Amazon Web Services (AWS) and Microsoft Azure.
• Proven track record of developing System Security Plans (SSP) and embedding security controls aligned with NIST SP 800-53 and NIST SP 800-171.
• Extensive experience integrating Identity and Access Management (IAM), SSO, and endpoint telemetry.
• Deep understanding of modern software engineering pipelines, specifically securing GitHub Enterprise environments.
• Real world experience with Python and Infrastructure as Code (IaC) tools.
• Ability to translate complex Zero Trust and AI concepts into actionable business risk discussions for non-technical stakeholders.

Benefits

• Competitive medical, dental and vision benefits.
• Life Insurance, Short & Long Term disability insurance.
• Voluntary Accident, Critical Illness & Hospital Insurance.
• 401(k) and Roth 401(k) retirement plans with a fixed 3% of salary employer contributions.
• Health savings account with a company contribution.
• Flexible spending accounts (medical and dependent care).
• Company-paid parental leave after one year of employment.
• Flexible work schedules.
• Paid employee assistance program.
• 6 paid floating holidays (prorated first year).
• 4 weeks + 1 day paid Vacation Time Off per calendar year (prorated first year).
• 40 hours per year of paid Sick Leave.
• Monthly cell phone stipend.