Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)

Job Grade:

110

Please review the following job description:

Responsible for developing and maintaining the technical IT/cyber security capabilities necessary for safeguarding the firm's information systems and The Cybersecurity Engineer (AI Cloud Security) is part of Truist’s AI Security Engineering function and is responsible for designing, engineering, deploying, and operating security controls for AI, ML, and Generative AI systems across cloud platforms.

This role focuses on hands on engineering, enabling secure AI usage through cloud-native security controls, automation, and infrastructure as code, and operationalizing enterprise AI security standards. Engineers in this role work closely with AI platform teams, cloud engineering, governance, and risk partners to ensure AI systems are secure by design, compliant by default, and scalable across the enterprise.

Essential Duties and Responsibilities

Following is a summary of the essential functions for this role. Other duties may be assigned as needed.

AI & Cloud Security Engineering

• Engineer and deploy security controls for AI/ML and Generative AI systems, including model‑level, data‑level, and platform‑level protections.

• Implement AI guardrails and safety controls (e.g., prompt injection defenses, content safety filters, policy enforcement, model access controls).

• Support secure AI platform onboarding for internal teams, ensuring alignment with Truist AI Security Standards and Review Processes.

• Perform technical security assessments of AI systems and cloud‑hosted AI services.

Infrastructure as Code & Automation

• Design and implement Infrastructure as Code (IaC) using Terraform and CloudFormation to deploy AI security controls consistently.

• Build and maintain CI/CD pipelines (GitLab) for security tooling, guardrails, and configuration‑as‑code.

• Automate operational workflows using Python and scripting to reduce manual security operations.

Cloud Platform Security

• Engineer secure, scalable cloud environments supporting AI workloads across AWS and Azure.

• Implement and integrate cloud security tooling (e.g., Wiz) to provide visibility and control over AI assets.

• Secure containerized and orchestrated workloads supporting AI pipelines (ECS, EKS, Kubernetes).

Collaboration & Enablement

• Partner with AI platform teams, application engineers, cloud security, and governance stakeholders to embed security into AI delivery.

• Contribute to the evolution of enterprise AI security standards, patterns, and reference architectures.

• Support incident response, threat modeling, and remediation activities related to AI systems.

Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Bachelor’s degree and five years of experience in systems engineering or administration or an equivalent combination of education and work experience

• In-depth knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security

• Previous experience in planning and managing IT projects

Technical Skills & Experience

• Strong hands‑on experience with Azure and/or AWS

• Infrastructure as Code experience with Terraform and CloudFormation.

• Experience building and managing CI/CD pipelines (GitLab).

• Experience implementing or operating cloud security tooling (e.g., Microsoft Purview, Sentinel, Wiz or equivalent).

Emerging Skills

• Experience securing AI/ML or Generative AI systems in production environments.

• Familiarity with AI‑specific security controls, such as:

  • Prompt injection mitigation

  • Content safety / moderation controls

  • Model access and usage restrictions

  • Secure data handling for AI pipelines

• Exposure to Azure and Azure‑hosted AI services.

• Experience working in regulated environments with strong risk and governance requirements.

Other Job Requirements / Working Conditions

Sitting

Constantly (More than 50% of the time)

Visual / Audio / Speaking

Able to access and interpret client information received from the computer and able to hear and speak with individuals in person and on the phone.

Manual Dexterity / Keyboarding

Able to work standard office equipment, including PC keyboard and mouse, copy/fax machines, and printers.

Availability

Able to work all hours scheduled, including overtime as directed by manager/supervisor and required by business need.

Travel

Minimal and up to 10%

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays. For more details on Truist’s generous benefit plans, please visit our Benefits site. Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan. As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.