Lead AI Security Governance

Are you a visionary in cybersecurity strategy and policy? As the Lead AI Security Governance, you will own the AI Security Strategy domain within Plain Security Studios. This pivotal role focuses on the governance and people aspects of cybersecurity in the age of AI. You will develop and enforce frameworks that ensure our AI solutions and those of our clients are secure, compliant, and ethically sound. From shaping internal policies and best practices to advising clients on regulatory compliance and risk management, you’ll be at the forefront of defining how organizations can safely adopt AI technologies. Reporting directly to the VP of Plain Security, you will collaborate with other security leaders to maintain a holistic and responsible security program covering prevention, detection, response, governance, and user awareness.

• Develop AI Security Strategy: Create and continuously refine the overall AI security governance framework for Plain Concepts and its clients. This includes policies for secure AI development, deployment, and maintenance, ensuring alignment with industry standards and legal requirements.
• Governance and Compliance: Establish guidelines and procedures to comply with emerging AI regulations and cybersecurity standards (e.g. AI Act, GDPR, NIST AI Risk Management Framework, ISO 27001). Oversee compliance initiatives and risk assessments related to AI and machine learning systems.
• Risk Management: Identify and assess security risks unique to AI solutions (such as data privacy issues, model vulnerabilities, adversarial threats). Implement risk mitigation strategies and incident response plans specific to AI/ML systems.
• Security Awareness and Training: Lead the "People" vertical by developing training programs and awareness initiatives on AI security. Ensure that employees and clients understand secure practices when building or using AI-driven tools. This may include creating workshops on topics like secure AI coding, data handling, and recognizing AI-driven social engineering threats.
• Collaboration and Advisory: Work closely with technical teams (Defensive and Agentic Security leads) to embed governance requirements into product and service development. Act as an internal advisor for projects involving AI, guiding teams on best practices for security and compliance from project inception through deployment.
• Client Consulting: Serve as a strategic advisor to our clients and partners. Provide high‑level guidance on establishing their own AI security governance – from drafting AI security policies to implementing governance structures and audit programs. Help clients navigate the challenges of adopting AI in a secure and compliant manner.
• Thought Leadership & Representation: Represent Plain Concepts in external forums, standards bodies, and industry events on AI security governance. Contribute to white papers, speak at conferences, and publish insights to solidify our reputation as leaders in secure AI strategy.
• Continuous Monitoring: Keep abreast of developments in cybersecurity, AI ethics, and data protection. Adjust strategies and policies proactively in response to new threats or regulatory changes. Advocate for continuous improvement in how the company and its clients govern and secure AI technologies.

• Extensive Security Governance Experience: 10+ years in cybersecurity, with significant focus on governance, risk management, and compliance. Demonstrated experience developing and implementing security policies or frameworks in a complex organization.
• Knowledge of AI/ML: Solid understanding of artificial intelligence and machine learning principles. Familiarity with the security considerations of AI systems (such as adversarial machine learning, model governance, and data privacy in AI). Prior experience working on projects involving AI or data science teams is a plus.
• Regulatory and Standards Expertise: Knowledge of relevant regulations and standards (e.g., data protection laws, industry‑specific security regulations, and AI ethics guidelines). Experience ensuring compliance with frameworks like ISO 270xx, NIST CSF, or similar is highly desirable.
• Strategic & Analytical Thinking: Ability to think big‑picture about aligning security initiatives with business and innovation goals. Skilled at risk assessment and management, with a detail‑oriented approach to analyzing how AI systems could fail or be misused.
• Leadership & Influence: Strong leadership and team collaboration skills. Able to influence and guide executive decision‑making as well as to drive cross‑team security initiatives. Experience leading committees or cross‑functional working groups is useful.
• Communication Skills: Excellent written and verbal communication. Capable of articulating complex governance concepts in clear terms and of preparing policy documents, reports, and presentations for senior stakeholders. Comfortable leading training sessions and speaking to large groups.
• Certifications/Education: Bachelor’s or Master’s degree in Information Security, Computer Science, or related field. Advanced certifications such as CISSP, CISM, or CISA (and any AI‑specific certifications or coursework) are appreciated, demonstrating a commitment to professional excellence.

• Salary determined by the market and your experience

• Flexible schedule 35 Hours / Week
• Fully remote work (optional)
• Flexible compensation (restaurant, transport, and childcare)
• Fully free health insurance, with a co‑payment for dental services
• Individual budget for training or equipment and free Microsoft certifications
• English lessons
• Birthday day off
• Monthly bonus for electricity and Internet expenses at home
• Discount on gym plan and sports activities
• Plain Camp (annual team‑building event)
• Extra perks: events attendance and speakers, welcome pack, baby basket, Christmas basket, discount portal for employees The pleasure of always working with the latest technological tools!

The selection process: Simple, just 3 steps.

• Phone screen
• 2 interviews with the team

Plain Concepts is a global company of over 500 people passionate about technology and innovation. Since our founding, we have grown through technical proficiency and confidence in ideas that others might consider risky, creating custom solutions for our clients. With offices in more than 6 countries, our mission is to continue to drive cutting‑edge projects around the world.

We are highly committed to technical excellence. We are known for developing highly customized projects, offering specialized technical consultancy and training.

Thanks to the great work of our technicians, we have been recognized for our ability to lead innovative projects that generate value, from artificial intelligence to blockchain, driving solutions that help companies optimize their performance.

• Our approach goes beyond traditional outsourcing; we focus on creating value together with our clients.
• Our teams are diverse and multidisciplinary, operating in a flat, collaborative structure.
• We live and breathe AGILE principles, ensuring flexibility and efficiency in everything we do.
• Knowledge‑sharing is at our core: from supporting each other internally to contributing to the broader tech community through conferences, events, and talks.
• Innovation drives us - even the boldest ideas are welcome here.
• Transparency underpins all our relationships, fostering trust and long‑term partnerships.

Check out our website! → https://www.plainconcepts.com/

At Plain Concepts, we certainly seek to provide equal opportunities. We want diverse applicants regardless of race, colour, gender, religion, national origin, citizenship, disability, age, sexual orientation, or any other characteristic protected by law.