Principal Security by Design architect

About GlobalFoundries :

GlobalFoundries (GF) is a semiconductor manufacturer that produces chips for various high-growth markets, including automotive, smart mobile devices, and communications infrastructure. The company operates global manufacturing facilities in the U.S., Europe, and Asia and is a "Trusted Foundry" for government security needs. GF was founded in 2009 from AMD's manufacturing operations and has since grown to be the third-largest semiconductor foundry by revenue.

Summary of role:

The Security by Design Architect will partner with application development and AI/ML teams across the enterprise to embed security by design principles early in the lifecycle (“shift left”). This role will ensure that both traditional applications and emerging AI systems (including generative AI, agentic workflows, and ML models) are designed, built, and operated with security, resilience, and compliance at their core. In addition, the architect will champion security advocacy, fostering a global culture of secure development and responsible AI adoption.

Essential Responsibilities:

Security by Design / Shift-Left Enablement

• Partner with application, platform, and AI development teams to embed security requirements into design and development processes.
• Define and maintain secure design patterns for applications, APIs, and AI/ML pipelines.
• Integrate threat modeling, secure coding standards, and automated security testing into DevSecOps workflows.
• Establish early validation checkpoints for application and AI projects to prevent downstream risks.
• Align secure design with enterprise reference architectures and compliance frameworks (NIST, CMMC, ISO 27001, GDPR, AI Act, etc.).

AI/ML Security & Governance

• Develop and enforce security frameworks for AI/ML model development, deployment, and monitoring.
• Support model validation processes (fairness, robustness, adversarial resistance, data lineage).
• Define controls for protecting training data, model IP, and inference pipelines.
• Collaborate on emerging paradigms such as agentic AI security, guardrails, and alignment assurance.
• Map AI security requirements to frameworks such as OWASP LLM Top 10 and MITRE ATLAS.

Security Advocacy & Culture

• Act as a global advocate for security by design, promoting awareness and adoption across diverse teams.
• Build and support communities of practice and “security champion” programs in development teams.
• Develop and deliver training, workshops, and playbooks to raise developer and data scientist awareness.
• Translate complex security concepts into clear, actionable guidance for technical and non-technical audiences.
• Partner with HR/Comms to run enterprise-wide security culture and awareness campaigns.

Enterprise Collaboration

• Work across enterprise architecture, identity, observability, and network teams to ensure holistic coverage.
• Partner with data governance and AI ethics teams to align security with responsible AI initiatives.
• Influence vendor and partner engagements to ensure secure adoption of emerging technologies.
• Provide security leadership during solution design reviews, RFPs, and architecture boards.

Required Qualifications:

• 8+ years of experience in application security, enterprise architecture, or secure software engineering.
• Strong understanding of secure design principles, DevSecOps, and threat modeling.
• Experience with AI/ML platforms.
• Familiarity with AI-specific risks: prompt injection, model theft, data poisoning, adversarial inputs.
• Proven ability to work across global, cross-functional teams and influence without direct authority.

Preferred qualifications:

• Professional certifications: CSSLP, CISSP, SABSA, cloud security (AWS/Azure), or AI governance credentials.
• Hands-on experience with application or ML model development.
• Knowledge of regulatory landscapes impacting AI (EU AI Act, NIST AI RMF, ISO/IEC AI standards).
• Familiarity with secure agentic frameworks, guardrails, and alignment monitoring.
• Strong executive communication and security evangelism skills.

Expected Salary Range

$106,100.00 - $218,500.00

The exact Salary will be determined based on qualifications, experience and location.