Security Controls Assurance Lead (AI)

TL;DR

Security Controls Assurance Lead (AI): Defining and validating technical control frameworks for autonomous AI systems with an accent on regulatory compliance, infrastructure security, and automated evidence collection. Focus on pressure-testing system designs, establishing governance for AI-driven processes, and ensuring compliance with frameworks like SOC 2, ISO 27001, and FedRAMP.

Location: Must be based in or able to commute to San Francisco, CA, New York City, NY, or Washington, DC (Hybrid: 25% in-office requirement)

Salary: $345,000 USD

Company

hirify.global is an AI safety and research company dedicated to building reliable, interpretable, and steerable AI systems.

What you will do

• Define control frameworks and acceptance criteria for autonomous AI operators in collaboration with Engineering and Internal Audit.
• Pressure-test infrastructure and agent framework changes during the design phase to ensure control impact is addressed early.
• Set compliance standards for internal systems, focusing on auditability, segregation of duties, and change control.
• Establish governance standards for AI-performed controls to ensure they withstand external regulatory scrutiny.
• Advise on and implement automated audit workflows, including Claude-driven control testing and evidence collection.
• Assess the impact of new regulations and certifications on control design and engineering requirements.

Requirements

• Must be based in or able to commute to San Francisco, CA, New York City, NY, or Washington, DC.
• Experience supporting technology control programs through SOX readiness, FedRAMP, or large multi-framework SOC 2/ISO portfolios.
• Engineering fluency with the ability to read code, understand Terraform, and follow CI/CD pipelines.
• Programming proficiency in Python or a systems language such as Go, Rust, or C/C++.
• Deep familiarity with developer platforms, release engineering, or infrastructure control domains.
• Strong communication skills with the ability to translate regulatory requirements into actionable engineering criteria.

Nice to have

• Audit or advisory experience (Big 4 or equivalent) combined with in-house experience at an AI-forward tech company.
• Experience defining or assessing controls for AI/ML systems or agents in production.
• Background in standing up continuous controls monitoring or automated evidence programs.

Culture & Benefits

• Competitive compensation and benefits package.
• Flexible working hours and generous vacation/parental leave.
• Optional equity donation matching.
• Collaborative research-driven environment with frequent team discussions.
• Visa sponsorship support provided for qualified candidates.