Data & AI Security Engineer

As a Data & AI Security Engineer within the Cyber Engineering & Architecture function, you will own the definition, governance and continuous improvement of our customer’s Data and AI security posture. This is a hands‑on role, responsible for security standards, architectures and control governance to protect sensitive data, reduce exposure risk and enable safe adoption of AI capabilities. You will own cyber controls implementation and management using data security and AI security tooling. In addition to deep expertise in Data & AI security, this role requires collaboration with the wider Cyber Engineering & Defence teams, contributing to cross‑domain security architecture reviews, supporting incident remediation and root‑cause improvements when needed.

This is a hybrid role, so the successful candidate will be expected to attend the office in Dublin at least once a week.

Required Experience:

• Minimum of 8 years’ industry experience with at least 4 years in data security, information protection or security engineering roles.
• Hands‑on experience implementing data protection controls in Microsoft Purview
• Knowledge of adversarial AI techniques, including evasion attacks, model poisoning, prompt injection, and model inversion, 
• Experience delivering control governance, remediation workflows and evidence-based reporting for Data and AI security non‑
• Experience collaborating with governance stakeholders (Data, AI, Privacy, Legal) on policy and control implementation.
• Relevant certifications e.g., MS SC‑400, CISSP, CSSP, Microsoft AI Co-Pilot or equivalent
• Strong understanding of data protection concepts (classification, least privilege, encryption, DLP, secure sharing) and how they apply in modern collaboration environments.
• Ability to translate risk into practical standards and secure-by-design blueprints for data and AI use cases.
• Strong analytical skills to interpret signals and drive risk‑based remediation priorities.
• Strong stakeholder management and communication skills, including the ability to explain control requirements to technical and non‑technical audiences.

Key responsibilities & duties include:

• Own Data and AI security policies, standards and secure‑by‑design patterns for information protection and AI adoption.
• Engineer, manage and govern data protection controls (currently using Microsoft Purview)
• Operate and improve Data Security Posture Management and AI Security Posture Management practices, using insights to prioritise remediation.
• Define governance processes for data and AI security non‑compliances, exceptions and control gaps, coordinating remediation with technology and data owners.
• Partner with Data, AI Governance, Privacy and Legal stakeholders to ensure controls and processes meet regulatory and internal requirements.
• Support incident response by providing SME input for data leakage events, insider risk or AI-related security issues, and driving control improvements.
• Provide security architecture reviews and guidance for data platform, analytics and AI initiatives to ensure secure data flows and protection by design.
• Contribute to security awareness and enablement for employees on safe handling of sensitive data and approved AI usage patterns.
• Work with Cyber Defence to ensure relevant data protection events and telemetry are available for monitoring and response.
• Support development of metrics and reporting on data security posture and AI security posture to track trends in maturity and controls effectiveness.

Desirable Skills

• Exposure to DSPM concepts and tooling beyond M365 (e.g., cross‑cloud or SaaS data signals).
• Familiarity with EU AI Act concepts and practical security controls for AI adoption (e.g., oversharing prevention, auditability).
• Hands-on experience securing AI/ML services on platforms like AWS (SageMaker), Azure (Azure ML), or GCP (Vertex AI).