Associate Director, IT Security-NHI & Agentic AI lead
About the Role:
As an Associate Director, IT Security, you will provide leadership and guidance to managers, supervisors, and senior professionals. You will be responsible for the performance and results of multiple related departments or areas, overseeing the implementation of advanced security measures and crucial defense strategies across the organization.
Responsibilities:
• Provide leadership and direction to multiple IT security departments.
• Oversee the development and implementation of long-term security strategies.
• Coordinate large-scale security responses and complex investigations.
• Develop and enforce governance frameworks for IT security across departments.
• Direct initiatives to identify and mitigate significant security risks.
• Facilitate cooperation and communication across various IT and business departments.
• Lead enterprise-wide security training and awareness initiatives.
• Ensure strict adherence to regulatory and compliance requirements.
• Present security findings and recommendations to executive leadership.
• Manage budgets, resources, and security investments effectively.
NHI Program Design and Delivery
- Define and execute the NHI program roadmap across four phases: Foundation (discovery and inventory), Govern (controls and standards), Automate (lifecycle automation and CIEM integration), and AI Identity (agent governance).
- Build and maintain the NHI inventory register — a continuously updated record of all non-human identities across AD, Entra ID, AWS, Azure, GCP, and CI/CD platforms.
- Define NHI risk classification model — tiering all NHIs by blast radius, sensitivity, and governance maturity.
- Produce monthly NHI program metrics for reporting — inventory coverage, orphan rate, vault onboarding %, secret age, and rotation compliance.
CI/CD Pipeline and Container Identity
- Own CI/CD pipeline identity governance — migrating GitHub Actions and Azure DevOps pipelines to OIDC federation (keyless authentication) and eliminating stored pipeline secrets.
- Define and enforce pipeline identity standards — minimum permission scoping, federated credential design, and deployment identity governance.
- Own AKS and EKS workload identity architecture — ensuring all containerized workloads authenticate via federated identity rather than stored credentials.
- Deploy Secrets Store CSI driver and equivalent patterns to enable vault-injected secrets for Kubernetes workloads without credential storage.
AI Agent Identity Governance
- Design the AI agent identity model — defining identity structure, permission scoping, accountability attribution, and lifecycle governance for AI agents operating within the enterprise.
- Own LLM API key governance — inventorying, vaulting, and enforcing rotation for all API keys associated with OpenAI, Anthropic, Azure OpenAI, Gemini, and other LLM platforms.
- Govern MCP server identity and access controls — maintaining an approved MCP server registry and enforcing access via managed settings and policy.
- Build the AI agent audit trail — ensuring all AI-initiated actions are logged, attributed to a human authorizer, and included in compliance evidence packs.
- Lead shadow AI discovery — identifying corporate credentials used in unapproved AI tools and publishing the approved AI tool access policy
Skills:
• 15+ years of Industry experience.
• Executive Leadership: Exceptional leadership abilities to guide multiple departments towards common security goals.
• Strategic Management: Proficient in formulating and overseeing strategic security initiatives.
• Complex Incident Handling: Skilled in managing large-scale, sophisticated security incidents.
• Governance Knowledge: In-depth understanding of security governance frameworks and implementation.
• Advanced Risk Assessment: Expertise in high-level risk identification and mitigation strategies.
• Interdepartmental Liaison: Strong collaborative skills to unite diverse teams and departments.
• Program Management: Ability to design and lead comprehensive security training programs.
• Budget Management: Competence in managing security budgets and optimizing resource allocation.
Our Interview Practices
To maintain a fair and genuine hiring process, we kindly ask that all candidates participate in interviews without the assistance of AI tools or external prompts. Our interview process is designed to assess your individual skills, experiences, and communication style. We value authenticity and want to ensure we’re getting to know you—not a digital assistant. To help maintain this integrity, we ask to remove virtual backgrounds and include in-person interviews in our hiring process. Please note that use of AI-generated responses or third-party support during interviews will be grounds for disqualification from the recruitment process.
Applicants may be required to appear onsite at a Wolters Kluwer office as part of the recruitment process.