Job Summary

The AI Security Analyst's responsibilities include system and security deployments, configuration, monitoring, and reporting. This position will have a lead role in developing our AI technology road map and direction along with various security functions including performing vulnerability assessments, security testing, and working with operations and development teams on remediation and mitigation of findings. This position will have a role on the Security Council, Security Incident Response Team, Technology Audit Functions, and with Disaster Recovery/Continuity of Operations Planning. The AI Security Analyst provides support to planning, designing, and implementing systems and security controls which safeguard and monitor events for information systems, enterprise applications, and data.

Essential Functions

Security Architecture and Engineering

• Design and implement security controls for AI-enabled platforms and integrations
• Secure deployments involving generative AI, APIs, and cloud-based AI services
• Ensure alignment with Camden’s enterprise security architecture and standards

Threat Modeling and Risk Mitigation

• Perform threat modeling for AI systems and data flows
• Identify risks such as data leakage, unauthorized access, and misuse of AI services
• Develop and implement mitigation strategies

Data and System Protection

• Implement controls to protect sensitive data used within AI systems
• Enforce access controls, encryption, and data handling standards
• Monitor and protect against unauthorized data exposure through AI systems

Engineering Integration

• Collaborate with development and infrastructure teams to embed security into AI-enabled solutions
• Support secure development practices for AI-related applications
• Integrate security into automation and deployment processes

Continuous Monitoring and Improvement

• Establish monitoring capabilities for AI platform activity
• Evaluate emerging AI security tools and technologies
• Define and track AI security performance metrics
• Analyze, troubleshoot, and investigate security-related, information systems’ anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts.
• Will be responsible for understanding complex business IT needs, requirements, and projects scopes, with a focus on information systems and security requirements.
• Research, design, and develop new AI systems and security controls
• Author project and support systems and security documentation and diagrams

• Provide oversight, direction and possibly maintain/configure/analyze network and host-based security platforms:

  - Vulnerability scanning systems and tools

  - Network-based Intrusion Detection/Prevention Systems

  - Host-based Intrusion Detection/Prevention Systems

  - File integrity verification and monitoring software

  - Security Information & Event Management (SIEM) platform

  - Application (Layer 7) Firewall

  - Network Access Control (NAC)

  - Data Loss Prevention (DLP)

  - Log Indexing and Correlation platform

  - Anti-virus and anti-spyware console

  - Firewall and network access controls lists

  - Web and E-mail proxy and filtering systems

  - Physical access control systems

• Evaluate systems using vulnerability scanners and manual techniques to verify system security settings and configurations.
• Provide reoccurring reports for network and host-based security solutions.
• Develop secure configuration standards and controls while enabling the organization to remain nimble
• Work with key players to determine AI system and security requirements
• Define and Maintain systems and AI security solutions roadmap and present on a regular basis strategic vision for proposed future security technologies and improvements aligned to corporate and information security strategy
• Participate in Disaster Recovery exercises and continuous improvement processes.
• Maintain and update relevant system and process documentation and develop ad-hoc reports as needed.
• Assist the development of systems and security tool requirements, trials, and evaluations, as well as security operations procedures and processes.
• Establish and maintain a strong working relationship with all team members.
• Provide off-hours systems and security support as needed.
• Successfully manage time and technical responsibilities, set accurate expectations and meet deliverable deadlines while working in a team and information sharing environment.
• Dedicatedly advise management on ongoing AI needs and issues related to systems and security infrastructure; communicate industry trends, standard methodologies and opportunity for technology and process optimization
• May serve as lead, technical expert or project manager to team(s) concerned with development, networking and/or project management to coordinate changes and support enterprise technology initiatives.
• Conduct studies of new technologies to provide more efficient and cost-effective architecture solutions

Requirements

• Bachelor’s degree in Computer Science, Information Technology or related field or a combination of education and experience.
• A minimum of 10+ years IT experience; at least five of those years focused on some level of IT security and AI.
• Strong understanding of cloud platforms (Azure preferred)
• Experience with scripting or automation (Python, PowerShell)
• Working knowledge of AI/ML or generative AI technologies
• Hands-on experience with 5 of the following: vulnerability scanning, firewall, antivirus& malware analysis, proxy, IDS/IPS, log correlation tools, SIEM, DLP, NAC, and application firewall solutions
• Strong writing, documentation, and communication skills are required.
• Strong verbal and written communication skills with the ability to communicate effectively to all layers of the organization.
• Comfortable working on all Camden system platforms with a strong IT technical understanding and aptitude for analytical problem-solving.
• Strong understanding of enterprise, network, system and application level security issues.
• Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks.
• Understanding of the system hardening processes, tools, guidelines and benchmarks.
• Fundamental or greater understanding of encryption technologies.

And here’s the fine print HR wants you to know:

• Job is intermittently sedentary but requires mobility (i.e., climb stairs)
• Will use some repetitive motion of hand-wrist in using computer and writing
• Works in a typical office setting
• Emotional stability and personal maturity are important attributes in this position
• Must handle stressful, urgent, novel and diverse work situations on a daily basis
• May require long hours and odd schedules (including weekends)
• Position requires periodic travel by automobile to handle work-related activities
• May require airline travel, out-of-town and /or overnight trips
• Attendance and punctuality is essential for success in this position
• Hazards can be minimized with proper lifting techniques, SDS, general safety training, and wearing appropriate PPE
• Contact your HR team for the position’s Physical Demands Analysis

This job description is not an all-inclusive list of duties and responsibilities. Camden may add or change responsibilities in order to meet business and organizational needs. Employees must meet qualification standards that are job-related and consistent with business necessity and must be able to perform the essential functions of the position, with or without reasonable accommodations.

To learn more about our awesome Benefits, visit Camden Benefits.