Principal DevSecOps Engineer - AI

At Finastra, we’re a global leader in financial services software, dedicated to expanding access to financial services and shaping what’s next for the industry. Our technology powers mission‑critical solutions across Lending, Payments and Universal Banking, supporting over 7,000 customers, including 80% of the world’s top 50 banks, in more than 110 countries.

A senior technical SME responsible for enabling secure, automated delivery of machine learning and AI workloads. This role operates at the intersection of AI/ML engineering, product development, platform infrastructure, and cybersecurity—embedding security controls across the entire AI lifecycle, including CI/CD pipelines, model registries, vector databases, MCP services, and agent‑based AI orchestration.

Key Responsibilities:

Secure AI Platform Engineering

• Architect and implement secure, scalable, and resilient CI/CD pipeline’s purpose‑built for AI workloads, including LLM‑based and agentic AI systems.

  
  
  

• Automate secure build, deployment, and promotion workflows for AI workloads.

  
  
  

ML/AI SecOps Integration

• Shift security left by embedding automated controls such as SAST, SCA, container/image scanning, and policy‑as‑code into pipelines.

  
  
  

• Implement AI‑specific security measures, including data‑poisoning safeguards, model integrity validation, and prompt‑injection mitigation.

  
  
  

Infrastructure & Platform Security

• Work with platform engineering teams to harden vector databases, retrieval APIs, and other AI-serving infrastructure.

  
  
  

• Establish secure Infrastructure‑as‑Code (IaC) templates, GitOps workflows, and micro‑segmented identity patterns using secrets‑management tools such as Vault.

  
  
  

• Ensure multi‑region, fault‑tolerant, and security‑hardened deployment architectures for AI platforms.

  
  
  

Model Supply Chain Security

• Implement provenance, attestation, and traceability for datasets, training pipelines, and model artifacts.

  
  
  

• Protect the end‑to‑end AI supply chain—from data ingestion through model deployment—to prevent tampering, data integrity issues, or malicious model substitution.

  
  
  

AI Observability & Incident Response

• Collaborate with AI Platform and Security teams to develop monitoring and detection capabilities for AI‑specific threats, including adversarial examples, model extraction attempts, drift anomalies, and suspicious agent behaviors.

  
  
  

• Contribute to AI‑aware incident response procedures and threat‑hunting playbooks.

  
  
  

Governance & Compliance

• Champion the adoption of secure AI frameworks (e.g., NIST AI RMF) and define guardrails for responsible AI operations.

  
  
  

• Establish and maintain an AI Bill of Materials (AI‑BOM) to manage risk associated with third‑party models, components, and datasets.

  
  
  

Required Qualifications:

·        8–10 yrs DevSecOps experience, ML/AI SecOps, supply chain security.

·        Cloud Security expertise in securing Azure, AWS or GCP environment, particularly Kubernetes/Service Mesh, and their AI services

·        Mandatory Experience Python/Go, or similar programming language, along with advanced knowledge of IaC (Terraform) and GitOps patterns

Preferred Skills:

• Experience with provenance/attestation frameworks (e.g., SLSA, Sigstore).

  
  
  

• Cloud security certifications (Azure, AWS, GCP).

  
  
  

• Hands‑on experience with KMS, secrets‑management platforms, and hardware‑rooted trust technologies.

  
  
  

We are proud to offer a range of incentives to our employees worldwide. These benefits are available to everyone, regardless of grade, and reflect the values we uphold:

·       Flexibility: Enjoy unlimited vacation, based on your location and business priorities. Hybrid working arrangements, and inclusive policies such as paid time off for voting, bereavement, and sick leave.

·       Well-being: Access Confidential one-on-one therapy through our Employee Assistance Program, find support from our network of Wellbeing Champions and Gather Groups, and a calendar of monthly events and initiatives designed to help you thrive - Inside and Outside of work.

·       Medical, life & disability insurance, retirement plan, lifestyle and other benefits*

·       Sustainability: Benefit from paid time off for volunteering and donation matching.

·       DEI: Participate in multiple DE&I groups for open involvement (e.g., Count Me In, Culture@Finastra, Proud@Finastra, Disabilities@Finastra, Women@Finastra).

·       Career Development: Access online learning and accredited courses through our Skills & Career Navigator tool.

·       Recognition: Be part of our global recognition program, Finastra Celebrates, and contribute to regular employee surveys to help shape Finastra and foster a culture where everyone is engaged and empowered to perform at their best.

*Specific benefits may vary by location.

At Finastra, each individual is unique, bringing their own ideas, thoughts, cultural beliefs, backgrounds, and experiences together. We learn from one another, embrace and celebrate our differences, and create an environment where everyone feels safe to be themselves.

Be unique, be exceptional, and help us make a difference at Finastra!