Company Description
Open Innovation AI is a global technology company that specializes in developing advanced solutions for managing AI workloads. Its flagship product, the Open Innovation Cluster Manager (OICM), orchestrates complex AI tasks efficiently across diverse infrastructures. The platform is hardware agnostic, optimized for various GPUs and accelerators hardware, and facilitates seamless integration and scalability for enterprise AI applications. Open Innovation AI focuses on optimizing and simplifying AI workload management and making AI technologies accessible to organizations of all sizes. With its innovative solutions, companies can reduce operational costs, accelerate time to value, and maximize their return on investment, ensuring that their AI strategies contribute directly to enhanced business outcome.
Role Overview
We're seeking an experienced Security Architect to lead security strategies and implementation for our platform deployed across customer on premises data centers and cloud environments
Responsibilities
- Design and maintain end to end security architecture across applications, Kubernetes, storage, network, and compute infrastructure for hybrid deployments (on premises and cloud), including creation and validation of HLD/LLD documentation.
- Develop threat models, perform risk assessments, and conduct security reviews of designs, code, and infrastructure, ensuring compliance with customer and regulatory security requirements.
- Serve as the primary security point of contact for customer engagements, delivering architecture presentations, security briefings, and executive updates during pre-sales, deployment, and post-deployment phases.
- Support RFP/RFI responses, security questionnaires, and compliance documentation, contributing to technical proposals and alignment with government and regulated industry standards.
- Collaborate with customer technical teams to integrate Open Innovation products into their identity, network, storage, and security environments, ensuring secure deployment and operational readiness.
- Work closely with internal GRC, DevOps, Dev, and Data/ML teams to embed security by design principles, support vulnerability management and incident response, and drive continuous improvement of the platform security posture.
Qualification, Experience, Competence and Certifications:
- Design and maintain end to end security architecture across Linux, Kubernetes, and containerized workloads in hybrid or on-premises HPC environments.
- Define and implement hardening, encryption, and zero-trust architecture principles across compute, storage, and network layers.
- Integrate DevSecOps practices within CI/CD pipelines, including SAST/DAST testing, container image scanning, and supply chain security controls.
- Define and enforce identity and access management standards, including RBAC, PAM, SSO, MFA, and secure integration with customer IdPs and key management systems (KMS/HSM).
- Develop and maintain HLD/LLD documentation, architecture diagrams, baselines, and runbooks aligned with internal standards and audit requirements.
- Lead vulnerability management, incident response coordination, and security validation activities across hybrid or sovereign deployments.
- Ensure compliance with NIST 800-53, ISO 27001, SOC 2, and UAE government frameworks (e.g., NESA, DESC), preparing evidence and SSP/POA&M documentation as needed.
- Collaborate with GRC, DevOps, and Dev teams to maintain compliance posture and promote cure development practices.
- Work with vendors, integrators, and internal stakeholders to ensure secure deployment, configuration, and operational readiness of the AI/ML platform.
- Stay informed of emerging technologies such as GPU isolation, confidential computing, and AI model security
Qualifications & Experience
- Bachelor’s degree in computer science, Information Security, or a related field.
- Minimum 7 years of experience in security architecture or engineering for hybrid, HPC, or GPU-based platforms.
- Strong hands on expertise in infrastructure security, container orchestration, encryption, and zero trust network design.
- Experience with Kubernetes,
- Working knowledge of compliance and security frameworks relevant to government and regulated industries (NIST 800-53, ISO 27001, SOC 2, NESA).
- Experience with incident response, vulnerability assessment, and compliance audit preparation in hybrid or sovereign cloud environments.
- Familiar with technologies like Kubernetes native security controls (RBAC, Network Policies, Pod security admission, OPA/Gatekeeper, Secrets encryption, Audit Logging); container runtimes and sandboxing tools, NVIDIA GPU Operator.
- Excellent written and verbal communication skills with the ability to produce clear, audit-ready documentation (HLD, LLD, design records).
- Preferred certifications: CISSP, CCSP, CISM, TOGAF, SABSA, CKA/CKS, or cloud provider security certifications (AWS/Azure/Core42 Cloud).
