Key Responsibilities

Cloud, Infrastructure & Configuration Audits

Conduct configuration and security posture audits across on-premise, hybrid, and multi-cloud environments (AWS, Azure, GCP).
Perform technical security assessments aligned with NIST , ISO 27001:2022 , SOC 2 , and CIS Benchmarks .
Review IaC (Terraform/Ansible/CloudFormation) and Kubernetes clusters to detect misconfigurations and enforce hardening baselines.
Perform API security reviews aligned to OWASP API Top 10 .

AI Security, Data Protection & Responsible AI Controls (New Requirements)

As EvonSys integrates AI across products and internal processes, this role will directly support the secure and compliant operation of AI/ML systems.

AI Security & Model Risk Management

Assess and monitor security risks in AI systems, including:
LLM prompt-injection risks
Retrieval augmentation vulnerabilities
Model drift and adversarial manipulation
API and model-access abuse
Review and validate third-party AI model usage (OpenAI, Azure OpenAI, Anthropic, HuggingFace), including:
Log handling
Data residency
HIPAA/GDPR alignment
Vendor security posture

AI Data & Privacy Controls

Ensure training/inference data used by AI systems adhere to:
Data minimization
Masking/tokenization standards
Retention & deletion controls
Support DPIAs / AI Impact Assessments , ensuring AI agents and models meet regulatory expectations (GDPR, DPDP 2023, SL-PDPA).

AI Governance & Compliance Alignment

Work with the AI CoE to ensure all AI systems follow:
ISO/IEC 42001 AI Management System guidelines
AI Model & Agent Register updates
Traceability + versioning + auditability
Participate in evaluating AI product features, model APIs, and agentic workflows for compliance before deployment.

AI Incident Response & Monitoring

Security & AI Governance Specialist