AI Security Control Developer/Site Reliability Engineer (Global Security)

Job Description

Job Description What is the opportunity? As an AI Security Control Developer/Site Reliability Engineer (Global Security) on the AI Security team, you will build, operate, and continuously validate the security controls that protect RBC's enterprise AI ecosystem — spanning hundreds of AI agents, MCP servers, gateways, and agentic workflows. Applying site reliability engineering principles, you will design and implement detective and preventative controls, metrics, alerting, and automated response mechanisms to ensure AI security boundaries operate reliably 24/7. You will be on-call on a rotating basis, ensuring security control reliability around the clock — accelerating regulatory readiness and setting new standards for AI security operational excellence. What will you do? Design, develop, and maintain detective and preventative controls to detect policy violations, unauthorized activity, and risky agent behavior at runtime using gateway logs and platform telemetry as data sources Apply SRE principles (SLOs, SLIs, error budgets) to AI security controls, designing and implementing the alerting architecture, escalation paths, triage runbooks, and self-healing mechanisms to ensure 24/7 operational resilience Build comprehensive metrics dashboards and alerting for control health, detection accuracy (true/false positive rates), and coverage Build and maintain automated testing pipelines for continuous validation of LLM Gateway controls (data masking, sensitive information detection, prompt injection prevention) using synthetic test data and known attack pattern libraries Build strong partnerships and collaboration with AI platform teams, MLOps, DevOps, IAM, and Security Architecture to define and integrate security controls What do you need to succeed? Must-have Bachelor's degree (or equivalent) in Computer Science, Software Engineering, Cybersecurity, or a related field 5 years of software engineering or SRE experience with strong, production-level Python proficiency Experience building containerized services using Kubernetes or OpenShift Experience with Open Policy Agent (OPA) or policy-as-code frameworks Experience with SRE practices including SLOs/SLIs, error budgets, observability, alerting, incident response, and on-call rotations Experience defining and implementing infrastructure and application pipelines Ability to deliver robust, production-ready AI security solutions and platforms, drive continuous improvement, advocate for safety and privacy-by-design, and communicate effectively with technical and business stakeholders Excellent organizational, communication, interpersonal, and motivational skills in achieving business objectives Nice-to-have Experience building detection and response systems, SIEM/SOAR integrations, or security operations tooling Experience with API design Stay up to date with new and evolving AI security threats and mechanisms for defending against those threats Experience with dual-cloud or hybrid environments, advance

Required Skills