Security Architect

Role: Technical Architect - Security & Governance

Schedule: Mon-Thurs onsite, Fri remote in HiTEC City

Company: Insight Global: Evergreen.AI

Role Summary

Evergreen.AI delivers enterprisegrade, endtoend agentic AI systems. As the Technical Architect for Security & Governance, you will own security architecture, compliancebydesign patterns, and operational guardrails that enable production deployments - not just PoCs. You will define control objectives and reference architectures for multiagent orchestration, LLM knowledge management, and enterprise integrations, embedding identity, data protection, model safety, observability, and resiliency from day one.

In addition, you will serve as a trusted partner to stakeholders, both internal and client-facing, clearly articulating security posture, dependencies, and risks. You will foster a collaborative, solution-oriented culture grounded in communication excellence, operational rigor, and a strong growth mindset.

Key Responsibilities

• Architect secure, compliant multiagent AI systems (orchestration, RAG pipelines, enterprise integrations) with clear trust boundaries and leastprivilege access.
• Own IAM strategy using Entra ID (Azure AD), OAuth2/OIDC, workload identities; drive zerotrust and finegrained RBAC/ABAC.
• Implement data protection & governance: encryption in transit/at rest, CMK/HSM, secrets management, DLP; govern RAG data with Microsoft Purview.
• Embed DevSecOps & policyascode in CI/CD (SAST/DAST/SCA, SBOM/attestations), cluster/container hardening, and automated evidence capture.
• Define observability & reliability: privacyaware telemetry (logs/metrics/traces), SLOs/SLIs and error budgets; integrate App Insights, Prometheus/Grafana, ELK; enable Sentinel detections/response.
• Map designs to SOC 2, ISO 27001, HIPAA, GDPR/CCPA and enterprise risk frameworks; lead threat modeling, DPIAs, and thirdparty risk reviews.
• Engineer resiliency & posture: multiregion HA/DR, circuit breakers, rate limiting, chaos engineering; manage CSPM/CNAPP baselines.
• Advise clients, mentor teams, and publish reusable reference architectures, control libraries, and runbooks.

Qualifications

• 7+ years in security or systems architecture; 2+ years securing AI/ML or dataintensive platforms.
• Handson with agentic AI and LLMOps stacks (LangChain, Semantic Kernel; MLflow/Kubeflow/Azure ML).
• Cloud & orchestration: Azure (preferred), plus AWS/GCP familiarity; Kubernetes/AKS, serverless, API gateways, and Kafka/Event Hubs.
• Observability: Prometheus, Grafana, ELK; SLO/SLI design and incident management.
• Security depth: IAM, keys/secrets, network security, encryption, DLP, supplychain security (SLSA, SBOM, Cosign).
• Compliance execution with SOC 2, ISO 27001, HIPAA, GDPR/CCPA; control mapping and auditready evidence.
• Excellent communication and stakeholder management; ability to simplify complex security topics for executives and clients.
• Advanced degree preferred; certifications such as Azure Solutions Architect Expert, CISSP/CCSP/CCSK, CISM, or TOGAF are a plus.