AI Cloud Security and Infrastructure Engineer

We are always seeking talented motivated growth-minded and creative individuals. Our firm is committed to providing employee support and advancement while embracing inclusion and innovation as keys to a stronger future.

We invite you to explore the position below and to submit your application to join our team!

Position Summary:

Essential Duties and Responsibilities:

• Design and run secure highly scalable cloud infrastructures (Azure AWS GCP) tailored for AI workloads and data-intensive applications.

• Build and manage infrastructure-as-code (IaC) using tools such as Terraform Pulumi Azure ARM templates.

• Develop implement and enforce security best practices for AI pipelines including data encryption identity and access management PKI and zero-trust architectures.

• Maintain compliance with key industry standards frameworks and regulations (ISO 27001 ISO 27701 ISO 42001 GDPR CCPA CMMC Level 2).

• Partner with software engineering and cross-functional teams to secure CI/CD pipelines and clearly communicate technical risk and compliance information to executive stakeholders.

• Secure optimize and continuously monitor containerized environments for LLM deployments leveraging Docker and Kubernetes.

• Support infrastructure for fine-tuning hosting and scaling LLMs (OpenAI Hugging Face Azure OpenAI Service) including management of GPU/TPU resources.

• Configure and oversee DNS core networking services and SIEM platforms (e.g. Microsoft Sentinel) to support threat detection incident triage and compliance reporting.

• Perform security and risk assessments for AI infrastructure and data pipelines and drive the execution of mitigation strategies.

• Implement and maintain observability tools (Datadog Prometheus Grafana) for AI systems and lead incident response efforts for security breaches and critical system outages.

• Support with data asset inventory tracking and media auditing to strengthen data governance and control.

• Maintain strict confidentiality of information.

Knowledge Skills and Abilities:

• Deep expertise in PKI encryption standards and cryptographic hashing methods.

• Advanced understanding of core networking concepts DNS and securing web services.

• Solid knowledge of key compliance frameworks including ISO 27001 ISO 27701 ISO 42001 and CMMC L2.

• Exceptional written and verbal communication skills with the ability to effectively engage both technical and non-technical stakeholders and the ability to clearly communicate complex technical concepts to non-technical stakeholders.

• Demonstrated reliability and integrity in managing and safeguarding sensitive information.

• Understanding of data governance principles and secure end-to-end model lifecycle management.

• Familiarity with prompt engineering practices and techniques for optimizing large language models (LLMs).

• Strong skills in creating clear documentation and delivering effective presentations.

• Proven capability to troubleshoot and solve problems under pressure and tight deadlines.

• Excellent team-oriented service approach and professional client-facing demeanor.

Education and/or Experience:

• Bachelors degree or equivalent combination of training education and experience that demonstrates the ability to perform the core responsibilities of the role.

• Minimum five (5) years of experience in cloud infrastructure engineering with a strong emphasis on security.

• Relevant certifications such as Microsoft Certified: Azure Security Engineer Associate Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP) Certified Information Security Manager (CISM) AI Governance Professional (AIGP).

• Experience designing and managing AI/ML pipelines and implementing DevSecOps practices.

• Experience securing containerized environments including Kubernetes and Docker.

• Hands-on expertise with Kubernetes Docker and infrastructure-as-code (IaC) tools (e.g. Terraform ARM templates).

• Experience working with MLOps platforms such as MLflow and Kubeflow.

• Experience implementing and operating SIEM solutions preferably Microsoft Sentinel.

The Firm will comply with any applicable city or state workplace mandates in effect in regards to Covid-19.

This position description is intended to describe the general content of and requirements for the performance of the job. The statements contained in the position description are not necessarily all-inclusive and additional duties and responsibilities may be assigned as determined by business needs.

This position description does not constitute a written or implied contract of employment.

Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

By applying for this position you agree and understand that Troutman Pepper Locke will process your Personal Information pursuant to the terms of our Worker and Applicant Global Privacy Notice. If you have questions about our data handling practices or you are a resident of California the United Kingdom or the European Union and wish to exercise your privacy rights please contact us at .

Equal Employment Opportunity
Troutman Pepper Locke adheres to a policy of equal opportunity and will make all employment decisions which include hiring promotion transfer demotion evaluation compensation and separation without regard to race color religion sex age sexual orientation gender identity or expression national origin pregnancy citizenship disability genetic information marital or armed forces status and any other classification as protected by law.

Compensation is dependent on several factors such as position location market education training and/or experience.