Corporate Vice President: AI Security Engineer (Remote, any state, US)

Location Designation: Hybrid - 3 days per quarter AI Security Engineer As part of Technology, you'll have the opportunity to contribute to groundbreaking initiatives that shape New York Life's digital landscape. Leverage cutting-edge technologies like Generative AI to increase productivity, streamline processes, and create seamless experiences for clients, agents, and employees. Your expertise fuels innovation, agility, and growth — driving the company's success. The Cyber Resiliency Lead role is responsible for developing, implementing, and overseeing cyber resilience strategies that strengthen the organization’s ability to withstand and recover from advanced cyber disruptions across core technology layers. This role will be part of the first line cybersecurity team within NYL’s Information Technology Department. Responsibilities include resilience planning for core technology infrastructure and applications, as well as driving integration of cyber scenarios into disaster recovery (DR), business continuity (BC), and enterprise resilience efforts. The role serves as the critical bridge between cybersecurity, enterprise technology, and enterprise risk management. What You’ll Do: The AI Security Engineer is a senior, hands-on technical role responsible for designing, engineering, and modernizing New York Life’s Identity & Access Management (IAM) capabilities across all core IAM domains, including Identity Governance & Administration (IGA), Web Access Management (WAM), Privileged Access Management (PAM), and Directory Services. This role requires deep expertise in IAM engineering and security architecture, with the ability to design scalable, resilient identity solutions across hybrid and cloud environments. The engineer will serve as a technical leader within the IAM function, applying established security design patterns while evolving identity services to meet emerging enterprise needs. As New York Life expands its adoption of AI, ML, and agentic systems, this position will extend traditional IAM principles to support non-human identities, machine and workload identities, and autonomous AI agents. The engineer will help define how AI agents are authenticated, authorized, governed, and monitored, ensuring that autonomous actions remain secure, auditable, and aligned with enterprise risk and regulatory requirements. The AI Security Engineer will work closely with Cybersecurity Architecture, Cloud Platform, AI Engineering, and Application teams to integrate identity controls into modern platforms, including cloud-native services, AI pipelines, and agent orchestration frameworks. This role balances hands-on engineering, solution design, and architectural influence, and is expected to contribute meaningfully to standards, patterns, and roadmaps without being purely strategic. Successful candidates will bring 10+ years of experience across multiple IAM domains, strong cloud and security architecture knowledge, and practical experience applying IAM controls to AI-enabled or highly automated systems. • Design and implement identity, authentication, and authorization solutions for AI-enabled and agentic systems, treating AI agents as first-class non-human identities. • Define and enforce lifecycle management, access controls, and revocation for autonomous agents, machine identities, and service accounts. • Implement delegated and “on-behalf-of” authorization patterns to clearly distinguish human-initiated actions from agent-initiated actions for audit and compliance. • Apply least-privilege and scope-limiting controls to prevent privilege escalation in automated and multi-agent workflows. • Design, engineer, and support enterprise IAM solutions across Identity Governance & Administration (IGA), Privileged Access Management (PAM), Web Access Management (WAM), and Directory Services. • Lead identity lifecycle processes, including provisioning, access governance, certifications, and de-provisioning for human and non-human identities. • Engineer and support privileged access capabilities, including just-in-time access, credential vaulting, and session management. • Design and integrate directory and federation services, including Active Directory, Entra/Azure AD, LDAP, SAML, and OpenID Connect (OIDC). • Apply security architecture principles and IAM design patterns to deliver scalable, resilient, and compliant identity solutions. • Integrate IAM capabilities across hybrid and cloud environments, with strong hands-on experience in AWS and GCP. • Implement and support modern authentication and authorization frameworks, including OAuth 2.0, MFA, and passwordless authentication. • Partner with Cybersecurity Architecture, Cloud, and Application teams to ensure IAM solutions meet security, risk, and regulatory requirements. • Troubleshoot and resolve complex IAM-related authentication, authorization, and integration issues. • Integrate IAM controls into AI/ML pipelines and automation frameworks, enabling real-time authorizati

Apply tot his job

Apply To this Job