Job title: AI Security & Governance Architect
Job type: Permanent
Emp type: Full-time
Industry: Computer Software
Salary from: €50,000.00 EUR
Salary to: €65,000.00 EUR
Location: Barcelona, Spain
Job published: 05-02-2026
Job ID: 36806

Job Description

Job Brief:

We are hiring an AI Security & Governance Architect to design and own the security, privacy, and compliance layer for enterprise AI and LLM usage across our platform. You will work closely with software engineers, LLM engineers, and platform teams to translate regulatory, security, and privacy requirements into scalable and enforceable technical controls, without introducing application-level friction or performance latency.

This role is based in the company’s offices in Barcelona and is offered as a 6-month fixed-term contract, with the possibility of renewal. The position follows a hybrid working model (3 days per week onsite and 2 days remote) and is open to candidates willing to relocate

 

Responsibilities:

  • Design and implement backend, infrastructure-level governance controls for AI and LLM usage.
  • Define and enforce policies for data visibility, classification, retention, redaction, and access across AI workflows.
  • Lead threat modeling for AI systems, addressing risks such as prompt leakage, data exfiltration, shadow AI usage, and model misuse.
  • Map platform capabilities to compliance frameworks including SOC 2, GDPR, ISO 27001, and HIPAA where applicable.
  • Define audit-grade evidence requirements and design immutable logging and monitoring strategies.
  • Partner with auditors, legal, and security teams to ensure controls meet enterprise and regulatory expectations.
  • Establish data minimization and purpose-limitation principles for AI interactions.
  • Define secure handling of PII, sensitive data, and regulated data within AI pipelines.
  • Advise on anonymization, pseudonymization, encryption, and data retention strategies.
  • Collaborate with LLM and platform engineers to embed governance and policy enforcement controls without requiring application refactors.
  • Support product and sales teams with security documentation, customer trust materials, and technical explanations for enterprise customers.

 

Requirements & Skills:

  • 2+ years of experience in security architecture, privacy engineering, compliance engineering, or governance-related roles.
  • Hands-on experience designing security controls for cloud-native systems (AWS, GCP, or Azure).
  • Strong understanding of data protection and compliance frameworks such as GDPR and SOC 2; HIPAA is a plus.
  • Familiarity with AI, ML, or LLM systems, including data flows, prompts, embeddings, and inference pipelines.
  • Ability to translate regulatory and compliance requirements into concrete technical designs.
  • Experience supporting audits, including evidence collection and control validation.
  • Strong threat modeling and risk assessment skills.
  • Comfortable working closely with engineering teams on deeply technical systems.
  • Experience with AI governance, ML platforms, or data infrastructure is preferred.
  • Background in privacy engineering or DPO functions is a plus.
  • Experience designing immutable audit trails, compliance observability systems, and responding to enterprise security questionnaires or vendor risk assessments is a plus.

 

Your Next Challenge Awaits!

Ready to take your career to the next level? Submit your application and explore the impact you can make with us!