CrawlJobs Logo

Head of Cybersecurity Technology & AI Security Engineering

United Kingdom, London · Job Posted March 13, 2026
Apply Position
Job Link Share

Job Description

The Head of Cybersecurity Technology & AI Security Engineering is an executive level position responsible for delivering technology solutions in support of Citi’s core cybersecurity teams, including the critical cybersecurity operations organization. This includes overseeing architecture, product management, engineering and technology operations for the tools and products that help deliver our core cybersecurity capabilities. In addition, the role leads the AI security engineering capability to leverage AI to transform the way cybersecurity capabilities and services are delivered and to empower an AI led cyber workforce.

Job Responsibility

  • Build, mentor and inspire a high performing cybersecurity team, growing both the current and the next generation of leadership talent
  • Lay out a clear vision for Cybersecurity Technology in partnership with the leaders of Cyber Security Operations, BFT-CISO, and Cyber Risk and Controls
  • Lead significant initiatives within and help deliver the CISO and BFT cyber strategies, and securely enable business and technology activities and programs
  • Work with the assigned Enterprise Security Architects, vendors and engineers to develop and document an effective architecture that aligns with Citi’s architecture principles and overall Enterprise Architecture
  • Lead a product mgmt. function that engages stakeholders to prioritize features and capabilities in the Cybersecurity Technology roadmap, delivering value and user experience
  • Build an AI capability that maintains an “agent first” mindset to solve security problems
  • Manage the budget, resource planning, and delivery of end results through executing the functional strategy
  • Leverage the team to rapidly respond to emerging threats, security incidents and critical business activities
  • Lead and securely enable significant business change in complex global environments, managing complex multiple risk dimensions
  • Partner with peer leadership to drive cyber strategy and unify global processes and functions
  • Implement an effective problem management process to identify recurring issues or potential upcoming issues to assure the long-term effectiveness of the environment
  • Maintain a responsible compliance program

Requirements

  • 15+ years of relevant experience in an Engineering role in the cybersecurity, digital or AI fields
  • Experience working in Financial Services or Technology or a large complex and/or global environment
  • Comprehensive knowledge of design metrics, analytics tools, benchmarking activities and related reporting to identify best practices
  • Proven track record of building and running resilient service driven technology capabilities
  • Demonstrated use of driving AI delivery and engineering to transform capabilities and services to deliver value to customers and stakeholders
  • Proven ability to engage and influence senior stakeholders across business, risk, technology, and governance functions in a banking context.
  • Demonstrated success in building, leading, and scaling global cybersecurity teams

Nice to have

  • Deep, demonstrable experience leading security engineering and operations at scale
  • A track record of building and mentoring high-performing, diverse security teams
  • Hands-on fluency across cloud-native architectures (Kubernetes, Terraform, service mesh), modern CI/CD, and infrastructure-as-code
  • A sharp understanding of the AI threat landscape, including risks specific to generative AI and large language models
  • Experience operating or transforming a SOC — with a bias toward automation, detection engineering, and measurable outcomes
  • Strong DFIR fundamentals and the ability to lead under pressure during major incidents
  • Active engagement with the open-source security community
  • The ability to communicate risk to boards and business leaders without reliance on jargon or frameworks
  • You've built security programs & platforms, not just inherited them
  • You default to engineering solutions over checkbox compliance
  • You default to engineering solutions to problems vs purchasing tools
  • You attract talent because people want to work with you, not for you
  • You treat threat intelligence as an input to action, not a report
  • You've contributed to or actively leverage open-source security tooling
  • You've operated successfully in challenging environments

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Head of Cybersecurity Technology & AI Security Engineering

8 matching positions

Head of Cybersecurity Technology & AI Security Engineering

The Head of Cybersecurity Technology & AI Security Engineering is an executive l...
Location
Location
Ireland , Dublin
Salary
Salary:
230000.00 - 420000.00 EUR / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of relevant experience in an Engineering role in the cybersecurity, digital or AI fields
  • Experience working in Financial Services or Technology or a large complex and/or global environment
  • Comprehensive knowledge of design metrics, analytics tools, benchmarking activities and related reporting to identify best practices
  • Proven track record of building and running resilient service driven technology capabilities
  • Demonstrated use of driving AI delivery and engineering to transform capabilities and services to deliver value to customers and stakeholders
  • Proven ability to engage and influence senior stakeholders across business, risk, technology, and governance functions in a banking context.
  • Demonstrated success in building, leading, and scaling global cybersecurity teams
Job Responsibility
Job Responsibility
  • Build, mentor and inspire a high performing cybersecurity team, growing both the current and the next generation of leadership talent
  • Lay out a clear vision for Cybersecurity Technology in partnership with the leaders of Cyber Security Operations, BFT-CISO, and Cyber Risk and Controls.
  • Lead significant initiatives within and help deliver the CISO and BFT cyber strategies, and securely enable business and technology activities and programs
  • Work with the assigned Enterprise Security Architects, vendors and engineers to develop and document an effective architecture that aligns with Citi’s architecture principles and overall Enterprise Architecture.
  • Lead a product mgmt. function that engages stakeholders to prioritize features and capabilities in the Cybersecurity Technology roadmap, delivering value and user experience.
  • Build an AI capability that maintains an “agent first” mindset to solve security problems
  • Manage the budget, resource planning, and delivery of end results through executing the functional strategy
  • Leverage the team to rapidly respond to emerging threats, security incidents and critical business activities
  • Lead and securely enable significant business change in complex global environments, managing complex multiple risk dimensions
  • Partner with peer leadership to drive cyber strategy and unify global processes and functions
  • Fulltime
Read More
Arrow Right

Vice President - Technology (AI Security & Risk Manager)

The Technology department at our client is responsible for creating and continuo...
Location
Location
United States , New York
Salary
Salary:
150000.00 - 175000.00 USD / Year
rennerbrown.com Logo
Renner Brown
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, Data Science, or a related field
  • advanced degree a plus
  • At least 7–10 years of experience in information security, technology risk, or a related field, with a minimum of 3 years focused on AI systems, machine learning security, or AI governance
  • Deep understanding of the AI and LLM landscape, including foundation model architecture, agentic systems, RAG pipelines, and the risk implications of each
  • Hands-on experience evaluating AI platforms and products, including the ability to assess vendor claims about model behavior, data handling, and security controls with appropriate skepticism
  • Familiarity with AI risk frameworks and emerging standards, including NIST AI RMF, MITRE ATLAS, OWASP LLM Top 10, and ISO/IEC 42001
  • Experience with vendor risk management in a regulated financial services environment, including contract negotiation support and third-party security assessments
  • Knowledge of relevant regulatory frameworks including DORA, SOX, SEC cybersecurity disclosure rules, and GDPR/CCPA as they apply to AI data flows
  • Strong technical skills sufficient to evaluate AI system architecture, API security, data pipeline design, and access control models without reliance solely on vendor documentation
  • Excellent communication skills, with the ability to translate highly technical AI risk concepts into clear, decision-ready language for senior leadership, Legal, and Compliance
Job Responsibility
Job Responsibility
  • Own and maintain the firm's AI risk framework, covering model risk, data privacy, adversarial threats, third-party AI, and regulatory compliance
  • Develop and enforce AI usage policies in collaboration with Legal and Compliance, including acceptable use, data classification requirements, and prompt handling standards
  • Maintain an inventory of AI tools deployed firm-wide — both sanctioned and shadow — and assess associated risk profiles
  • Provide regular AI risk reporting to the Head of Technology Risk and senior leadership, including emerging threat trends, vendor posture changes, and control gaps
  • Monitor the evolving regulatory environment for AI (EU AI Act, SEC guidance, DORA, NY DFS) and advise on compliance obligations and required controls
  • Lead security and risk assessments of vendors introducing AI capabilities into existing or new platforms, including evaluating model transparency, data handling practices, and auditability
  • Develop and maintain a structured AI vendor evaluation framework, incorporating criteria for model governance, output reliability, data residency, and incident response obligations
  • Partner with Procurement and Legal to ensure AI-specific provisions are reflected in vendor contracts, including data usage restrictions, model change notifications, and liability terms
  • Maintain a tiered risk register of third-party AI integrations, with ongoing monitoring for material changes to vendor AI functionality, architecture, or ownership
  • Engage directly with vendor security and product teams to assess AI-related controls and drive remediation of identified gaps
  • Fulltime
Read More
Arrow Right

Head of Technology

Lead the digital bank's technology strategy, architecture, and operations, ensur...
Location
Location
Egypt , New Cairo
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s degree in Computer Science, Engineering, or a related field
  • 10+ years of experience in IT leadership roles, preferably in digital banking or fintech
  • Expertise in core banking systems, APIs, and digital transformation
  • Strong knowledge of cybersecurity and regulatory compliance for banking
Job Responsibility
Job Responsibility
  • Lead the digital bank's technology strategy, architecture, and operations, ensuring robust, scalable, and innovative systems that deliver exceptional customer experiences
  • Develop and implement the bank’s technology roadmap aligned with business objectives
  • Oversee the deployment of core banking systems, digital platforms, and solutions
  • Drive automation across operational processes to enhance efficiency
  • Lead the integration of emerging technologies (ML, AI) into banking operations
  • Manage vendor relationships for software development, IT infrastructure, and other technical services
  • Ensure high availability, performance, and security of IT systems
  • Foster a culture of innovation and agile development within the tech team
Read More
Arrow Right

Vp - Ai Security & Risk Manager

The Technology department at our client is responsible for creating and continuo...
Location
Location
United States , New York
Salary
Salary:
150000.00 - 175000.00 USD / Year
rennerbrown.com Logo
Renner Brown
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, Data Science, or a related field
  • advanced degree a plus
  • At least 7–10 years of experience in information security, technology risk, or a related field, with a minimum of 3 years focused on AI systems, machine learning security, or AI governance
  • Deep understanding of the AI and LLM landscape, including foundation model architecture, agentic systems, RAG pipelines, and the risk implications of each
  • Hands-on experience evaluating AI platforms and products, including the ability to assess vendor claims about model behavior, data handling, and security controls with appropriate skepticism
  • Familiarity with AI risk frameworks and emerging standards, including NIST AI RMF, MITRE ATLAS, OWASP LLM Top 10, and ISO/IEC 42001
  • Experience with vendor risk management in a regulated financial services environment, including contract negotiation support and third-party security assessments
  • Knowledge of relevant regulatory frameworks including DORA, SOX, SEC cybersecurity disclosure rules, and GDPR/CCPA as they apply to AI data flows
  • Strong technical skills sufficient to evaluate AI system architecture, API security, data pipeline design, and access control models without reliance solely on vendor documentation
  • Excellent communication skills, with the ability to translate highly technical AI risk concepts into clear, decision-ready language for senior leadership, Legal, and Compliance
Job Responsibility
Job Responsibility
  • Own and maintain the firm's AI risk framework, covering model risk, data privacy, adversarial threats, third-party AI, and regulatory compliance
  • Develop and enforce AI usage policies in collaboration with Legal and Compliance, including acceptable use, data classification requirements, and prompt handling standards
  • Maintain an inventory of AI tools deployed firm-wide — both sanctioned and shadow — and assess associated risk profiles
  • Provide regular AI risk reporting to the Head of Technology Risk and senior leadership, including emerging threat trends, vendor posture changes, and control gaps
  • Monitor the evolving regulatory environment for AI (EU AI Act, SEC guidance, DORA, NY DFS) and advise on compliance obligations and required controls
  • Lead security and risk assessments of vendors introducing AI capabilities into existing or new platforms, including evaluating model transparency, data handling practices, and auditability
  • Develop and maintain a structured AI vendor evaluation framework, incorporating criteria for model governance, output reliability, data residency, and incident response obligations
  • Partner with Procurement and Legal to ensure AI-specific provisions are reflected in vendor contracts, including data usage restrictions, model change notifications, and liability terms
  • Maintain a tiered risk register of third-party AI integrations, with ongoing monitoring for material changes to vendor AI functionality, architecture, or ownership
  • Engage directly with vendor security and product teams to assess AI-related controls and drive remediation of identified gaps
  • Fulltime
Read More
Arrow Right

Head of Global Assurance

Scale seeks a Head of Global Assurance to lead a high-performing team of technic...
Location
Location
United States , Washington
Salary
Salary:
287200.00 - 359000.00 USD / Year
scale.com Logo
Scale
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in cybersecurity compliance, GRC, public and commercial sector assurance, IT audit, cloud security, or related roles
  • Active U.S. security clearance, SCI eligible
  • Experience leading global or region-specific assurance programs through scalable control frameworks and cross-functional execution
  • Experience managing senior technical assurance, cybersecurity compliance, GRC, audit, or control evidence professionals
  • Experience managing distributed teams across time zones
  • Deep familiarity with FedRAMP, continuous monitoring, authorization packages, and related NIST frameworks
  • Experience leading customer assurance, control evidence, remediation, reporting, and audit workflows
  • Experience overseeing SOC 2, ISO 27001, and other commercial assurance frameworks
  • Experience with external assessors, authorizing officials, government customers, public sector partners, commercial auditors, or certification bodies
  • Experience working with legal teams on contract-driven assurance obligations, and strong judgment on when to escalate legal, contractual, technical, security, customer-facing, or privileged issues
Job Responsibility
Job Responsibility
  • Lead assurance programs across Scale’s Global Public Sector and Commercial businesses, including FedRAMP, NIST frameworks, SOC 2, ISO 27001, and other customer, regulatory, and business assurance requirements
  • Manage and develop a technical assurance team responsible for public sector authorizations, commercial assurance, audits, customer commitments, control evidence, remediation, and reporting
  • Set priorities and operating cadences for assurance workflows, including intake, evidence collection, control owner follow-up, remediation tracking, metrics, and deadline management
  • Build the metrics, dashboards, and reporting cadences that give company leadership a clear view of program health, key risks, and strategic priorities
  • Partner with Legal on contract-driven assurance obligations, sensitive escalations, external-facing responses, and customer-facing representation issues
  • Work closely with Global Public Sector, Enterprise, Security, Engineering, Product, and other control owners to validate evidence, track remediation, and support authorization and audit requirements
  • Collaborate across Legal and GRC on a unified controls framework for security and other regulatory requirements
  • Manage relationships with external auditors, assessors, and certification bodies
What we offer
What we offer
  • Comprehensive health, dental and vision coverage
  • Retirement benefits
  • Learning and development stipend
  • Generous PTO
  • Commuter stipend
  • Fulltime
Read More
Arrow Right

Senior AI Security Engineer

The Senior AI Security Engineer is a technical leader and engineering manager wi...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-10+ years of experience in software engineering, with demonstrable experience as a technical lead or engineering manager
  • Python mastery: Deep, hands-on experience building and maintaining production-grade Python applications and services
  • LLM engineering: Practical experience with LLM APIs (OpenAI, Anthropic, Google), prompt engineering, model evaluation, and input/output guardrails
  • Production systems: Track record of deploying and operating AI/ML systems in production at enterprise scale
  • Software engineering fundamentals: Clean code, design patterns, testable architecture, CI/CD, infrastructure-as-code
  • 3+ years leading or managing engineering teams, including performance management, hiring, and career development
  • Track record of delivering complex software products in environments where priorities shift rapidly
  • Experience setting engineering standards and driving quality across a team's output
  • Demonstrated ability to mentor and develop engineers through code review, architectural guidance, and knowledge sharing
  • Proven capability to attract, develop, and retain engineering talent
Job Responsibility
Job Responsibility
  • Agentic AI Engineering & Use Case Incubation (40%): Own and evolve the Incubator Environment — the platform and tooling that enables CISO teams to move from idea to working PoC to validated use case
  • Partner with cybersecurity domain teams to understand their challenges, identify high-value AI use cases, and rapidly prototype agentic solutions
  • Design, build, and deploy agentic AI systems that autonomously perform cybersecurity tasks — including threat analysis, security control validation, intelligent triage, and response orchestration
  • Architect multi-agent orchestration systems, defining how AI agents collaborate, delegate, and escalate across security workflows
  • Implement robust agent infrastructure: tool use frameworks, memory and context management, planning/execution loops, guardrails, and human-in-the-loop controls
  • Build and maintain RAG pipelines, knowledge retrieval systems, and dynamic context assembly that underpin agent decision-making
  • Shepherd validated use cases through to production readiness and handoff to the dedicated product support team
  • Drive adoption and effective use of AI development tooling (Devin, GitHub Copilot, Claude Code) to maximize team velocity
  • Make key technical decisions on architecture, technology selection, and build-vs-integrate trade-offs
  • Incubator Platform & Technical Architecture (25%): Design and maintain the Incubator Environment architecture — a scalable, secure platform that enables rapid prototyping and validation of agentic AI use cases
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Managing Director, Securities Finance Technology

We are seeking a highly motivated and experienced Technology Managing Director t...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of experience in software engineering and technology leadership, with a significant portion within the financial services industry
  • Minimum of 7 years in a leadership role managing large, global application development teams
  • Direct experience in Securities Finance, Agency Lending, or Collateral Management/Optimization is strongly preferred
  • Proven experience leading a successful, large-scale technology transformation from legacy systems to a microservices-based architecture
  • Bachelor’s or Master’s degree in Computer Science, Engineering, or a related technical field
Job Responsibility
Job Responsibility
  • Define and execute a comprehensive technology roadmap for the Agency Lending and Collateral Technology platforms, aligning with business goals and industry trends
  • Provide vision and leadership to a global team of software engineers, architects, and project managers
  • Champion the adoption of modern architecture patterns, including microservices, cloud-native development, and event-driven design
  • Drive the strategic transformation of monolithic applications into a resilient, scalable, and flexible microservices ecosystem
  • Define and execute an AI-first engineering strategy across front-end and back-end platforms, aligning technology direction with Citi's broader digital transformation priorities, and leading the group to make full use of AI-assisted software development
  • Oversee the end-to-end software development lifecycle (SDLC) for all applications within the Agency Lending and Collateral domains
  • Ensure the timely and high-quality delivery of new features, enhancements, and critical projects
  • Implement and enforce Agile and DevOps best practices to improve development velocity, quality, and team morale
  • Manage relationships with key stakeholders, including business heads, product owners, and infrastructure teams, to ensure alignment and transparency
  • Develop and implement a robust data strategy to unlock the value of our securities finance data
  • Fulltime
Read More
Arrow Right

Senior Sales Engineer

As a Senior Sales Engineer, you will be the technical face of the company, enabl...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
skyhighsecurity.com Logo
Skyhigh Security
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years in cybersecurity
  • 5+ years in pre-sales or solution engineering supporting enterprise/public sector deals
  • Proven track record engaging Government stakeholders on security technology
  • Hands-on experience with leading cybersecurity platforms like EDR/XDR, NDR, firewalls, cloud security, Data Security, SIEM, SOAR
  • Industry certifications preferred: CISSP, CISM, CEH, GIAC
  • Deep understanding of endpoint security (EDR/XDR/MDR), Data Security, threat detection & response, malware behavior, Network security and SOC use cases
  • Familiarity with SIEM/SOC operations, incident response lifecycle, and threat intelligence integration
  • Experience with next-gen firewalls, network security, cloud workload security (AWS/Azure/GCP)
  • Knowledge of Zero Trust principles and identity-centric security
  • Ability to map security capabilities to Government/Defense compliance needs and data sovereignty requirements
Job Responsibility
Job Responsibility
  • Lead the technical strategy for Government pursuits including RFP responses, compliance assessments, and product positioning
  • Conduct detailed technical discovery, needs assessment, and solution architecture workshops with customers and System Integrator partners
  • Design and deliver solution demos, lab scenarios, and POCs with relevant threat use cases
  • Act as a trusted cybersecurity advisor to Government stakeholders (CIOs/CISOs/IT heads)
  • Translate customer business/mission requirements into architectural security solutions
  • Align product/platform capabilities (endpoint, network, cloud, Data) to Government compliance & security frameworks
  • Equip sales and partner teams with competitive differentiation briefings, objection handling, and technical collateral
  • Validate feasibility, integrations, deployment models, and configurations for large-scale Government environments
  • Support product evaluations and technical validation committees
  • Drive automation and orchestration use cases with SOC / SIEM, AI ecosystems
What we offer
What we offer
  • Retirement Plans
  • Medical, Dental and Vision Coverage
  • Paid Time Off
  • Paid Parental Leave
  • Support for Community Involvement
  • Fulltime
Read More
Arrow Right