Principal Duties:
Security review background
– AI adaption knowledge for security risk review background

Core Must-Haves:
AI Security expertise – background in AI security reviews and AI adaptation risks
Security Risk Assessment – experience with risk management frameworks and methodologies for applications, AI solutions, and medical devices
Risk Remediation – experience drafting risk acceptances, exceptions, and tracking remediation in GRC tools
Translation Skills – ability to convert business-level risk requirements into technical control specifications for engineering teams

Ideal Background:
Healthcare, Fintech, Finance, Insurance or other highly regulated environments
“Translator” personality – can communicate policy with lawyers AND technical configurations with developers
Project Management skills – disciplined in managing risk project work plans and documenting lifecycle stages

What We DON’T Want:
Security Engineer profiles (too technical/backend focused)
Policy-heavy candidates (their AI governance team handles policies)
Pure engineering/tooling focused experience
Canned tool-based approaches

Key Differentiator:
We want someone who can bridge business and technical – not just an engineer who builds tools, but someone who is very hands-on, can assess risks, communicate findings to leadership, and translate requirements across different stakeholder groups in a healthcare environment.