Security Architect – GCP & Agentic AI
Explicitly mentions experience in vibe coding and tools similar to Openclaw and Ollama, so vibe coding is directly relevant to the role.
About the Role
As a Security Architect focused on Google Cloud Platform and agentic AI, you will design and deliver secure, scalable, and compliant cloud and AI architectures, implement AI/LLM-specific security controls, perform risk and threat modelling, and advise clients on governance and secure integrations.
Job Description
Role
The Security Architect will design and deliver secure, scalable, and compliant architectures for cloud and emerging agentic AI systems with a strong emphasis on Google Cloud Platform (GCP). The role blends cloud security architecture, AI/LLM security, risk and threat management, governance, and stakeholder-facing technical leadership.
Key Responsibilities
- Translate business, data protection, and security requirements into practical architectural designs using industry frameworks (e.g., NIST, ISO 27001, CIS).
- Design and maintain cloud-native security architectures with deep expertise in GCP security services and secure workload design.
- Establish secure architectural patterns and standards across cloud platforms, focused on GCP IAM, VPC Service Controls, Cloud Armor, Confidential Computing, and workload segmentation.
- Define and document security designs, diagrams, and rationales aligned with compliance requirements.
- Design security architectures for agent-based AI systems, including orchestration frameworks, tool-use agents, and multi-agent workflows.
- Implement AI/LLM security controls such as model security (input/output filtering, guardrails), prompt security and isolation, API and orchestration security, and data protection for vector stores and embeddings.
- Perform AI-specific threat modelling (model extraction, poisoning, hallucination risks, sensitive data leakage, jailbreaks/toxicity) and recommend mitigations.
- Conduct cloud and AI security architecture reviews (configuration reviews, GCP posture assessments, AI pipeline hardening) and evaluate security technologies.
- Support incident response for cloud and AI-driven systems and provide actionable mitigation strategies.
- Provide expert guidance to clients and mentor teams; contribute to presales and delivery collateral.
Requirements
Experience
- 5+ years in information security, cloud security, and architecture roles.
- Strong cloud security background across AWS, Azure, and GCP with hands-on GCP security experience.
- Experience architecting secure multi-project setups and identity boundaries.
- Demonstrable experience designing security for agentic AI and LLM-integrated applications and implementing AI/LLM security controls.
- Experience in risk assessments, threat modelling, incident response, and mentoring/influencing security decisions.
Technical Knowledge
- Deep, hands-on knowledge of GCP security services and best practices (GCP IAM, VPC Service Controls, Cloud Armor, Confidential Computing).
- Secure design experience for IAM, Zero Trust, network segmentation, data protection/encryption, application/API security.
- Familiarity with SIEM, IAM tooling, CASB, and container/Kubernetes security.
- Knowledge of vector stores, embeddings, and retrieval service security.
- Awareness of and alignment to governance and compliance frameworks (ISO 27001, NIST CSF / 800-53, NIS2, DORA, CIS benchmarks).
- Experience or familiarity with vibe coding and technologies similar to Openclaw and Ollama.
Certifications & Other
- One or more of: CISA, CRISC, CISM, CISSP (required).
- Eligible to obtain UK SC clearance and right to work in the UK.
What the role does not include
- This is a security-first architect role (not a general cloud architect).