Sr. Manager - MLSecOps Lead

What You’ll Do:Drive AL MLSecOps security including supply chain risk initiatives across ADP’s different business units.Build security into the MLOps & institutionalize the security scanning of AI/ML models images in line with shift left strategy.Provide thought leadership & manage supply chain vulnerability, model provenance, adversarial ML, GRCBuild a solution to generate Machine Learning Bill of Materials (MLBoM)Manage supply chain – Models security risks remediation flow.Develop and maintain the roadmap for AI/ML models security & related supply chain risk.Customize policies, rules, and alerts to comply with established policies and settings.Drive culture around secure models development through effective training, governance, and metrics.Bring thought leadership into the program and drive excellence.Manage the project timelines and delivery.Maintain awareness of AI/ML models cybersecurity threats and best practices to enable securing and hardening at scaleMetrics/ReportingIdentify meaningful KPIs/KRI’s to drive progress, improvement & improvement.Provide weekly Scanning and Monitoring reports.Create weekly, monthly and in-progress review presentations, as needed.Create and maintain Standard Operating Procedures (SOP)Establish strong partnership with key stakeholders in technology and product organizations.Manage communication upwards, downwards, and horizontally.Perform other duties as required.Experience You'll Need:Deep knowledge and understanding of AI/ML LLM security vulnerabilities (OWASP).Understanding of AL/ML model formats such as pickle, tensorflow, safetensors, etc.,Experience in implement and rolling out model scanning solution as part of model development.Candidate should be very thorough in internet technologies and highly versed with web development secure coding best practices.Understanding CI/CD pipelines covering source control, integration, and deployment (ex: Bitbucket, Jenkins, Rally, JIRA, Artifactory, Nexus, SonarQube, git, Snyk).Previous software engineering/architecture experience (Java, C#,.Net, JavaScript, Python) preferred.Strong analytical/problem solving skills and cross functional knowledge across multiple development and security disciplines.Strong experience in training development teams on secure codingUnderstanding of Test Automation tools and framework - NIST AI 100-A Risk Management Framework ProtectAbility to communicate security-related concepts to a broad range of technical and non-technical staff.Some experience with development of RESTful and SOAP web services preferred.Understanding of advanced iterative Agile, Cloud and Container Security, GenAI SecurityExceptional problem-solving skillsExcellent communication and presentation skillsAbility to be a good team player as part of remote teams.Self-motivated with positive attitudeShould be able to work independently.To Succeed In This Role:Bachelor's degree or equivalentA plus (degree in computer science, Information / Cyber Security, Computer Systems Engineering, Computer Information Systems)Ten years or more experience in various IT or cybersecurity roles, with five or more years of experience specifically in software engineering roles.Deep knowledge and understanding of AI Security and related risksCandidate should be very thorough in internet technologies and highly versed with web development best practices.Strong analytical/problem solving skills and cross functional knowledge across multiple development and security disciplines.Ability to communicate security-related concepts to a broad range of technical and non-technical stakeholders.Understanding of advanced iterative Agile and container & cloud securityFamiliarity with micro services architecture and design PatternsExcellent analytic skills, including qualitative and quantitative data analysis to support and defend data-driven decision-making regarding system threats, vulnerabilities, and riskAny of the following are a plus but not necessary: CEH, CISSP, CSSLP, GCIA, GPEN, GWAPT

#J-18808-Ljbffr