The Doctors Company is seeking a Senior Director AI Security to join our team. This is a hybrid opportunity based in East Lansing, MI, Napa, CA, or New York, NY.

The Senior Director, AI Security & Governance is responsible for establishing and operationalizing a unified AI security framework across all subsidiaries and third-party engagements, ensuring AI technologies are deployed with robust security architecture, clear governance accountability, and measurable risk controls aligned to regulatory expectations and enterprise risk appetite.

Qualifications:   

• 10+ years in information security, with 5+ years in senior leadership roles.
• Demonstrated experience in AI/ML security, data security, or cloud security architecture.
• Experience operating within a regulated financial services or insurance environment.
• Deep understanding of:
  • Secure SDLC and DevSecOps
  • Model risk management concepts
  • Identity and data protection controls in cloud environments
  • Regulatory frameworks impacting AI and automated decisioning
• Experience influencing executive stakeholders and board-level reporting.
• Proven ability to operate effectively in federated or multi-entity organizations.

Preferred: 

• Familiarity with NIST AI RMF, ISO 42001 (AI Management Systems), and NAIC AI principles.
• Background in adversarial ML, AI red teaming, or model evaluation.

Responsibilities: 

Enterprise AI Security Strategy

• Develop and maintain the enterprise AI security strategy aligned to corporate risk appetite and regulatory obligations.
• Establish security reference architectures and control baselines for:
  • AI/ML development environments
  • Generative AI platforms
  • Third-party AI services and embedded AI capabilities
• Define guardrails for AI system lifecycle management, including model development, deployment, monitoring, and decommissioning.

AI Risk Governance & Regulatory Alignment

• Design and operationalize an enterprise AI risk governance framework aligned with:
  • NIST AI Risk Management Framework
  • Model Risk Management (MRM) principles
  • Insurance regulatory expectations (e.g., NAIC AI principles, state DOI requirements)
  • Data privacy and consumer protection regulations 
• Establish enterprise AI inventory and classification standards.
• Partner with Legal, Compliance, and GRC to integrate AI-specific controls into existing risk programs.
  
• Develop AI risk reporting metrics for executive leadership and Board committees.
  

Secure AI Architecture & Technical Oversight

• Define secure architecture patterns for:
  • Retrieval-augmented generation (RAG)
  • Agentic systems and tool use
  • Model APIs and external LLM integrations
  • Data pipelines and training environments
• Establish controls for:
  • Prompt injection and model manipulation risks
  • Data exfiltration via AI systems
  • Model supply chain and third-party model risk
  • Identity, access, and data boundary enforcement
• Partner with Security Engineering to embed policy-as-code and automation into cloud and AI platforms.

Third-Party & Vendor AI Risk Management

• Enhance third-party risk processes to assess AI vendors, embedded AI capabilities, and model providers.
• Establish security due diligence standards for AI-enabled products.
• Partner with Procurement and Legal to embed AI risk clauses in contracts.

Incident Readiness & Threat Intelligence

• Integrate AI-specific attack vectors into threat modeling and incident response planning.
• Develop playbooks for AI misuse, model compromise, hallucination-driven harm, and data leakage scenarios.
• Monitor emerging AI threat landscapes and adjust enterprise controls accordingly.

People Leadership, Culture & Talent 

• Clearly define roles, expectations, and responsibilities for all team members.
• Provide coaching, development, and support to enable success and growth.
• Deliver consistent and constructive feedback to reinforce performance and behavior.
• Conduct regular 1:1s and ensure timely completion of performance cycles.
• Hold staff accountable for compliance and policy requirements.
• Drive a culture of continuous learning, innovation, and accountability.
• Model and reinforce cultural values and organizational norms, and actively recognize and celebrate behaviors that exemplify them.
• Develop and maintain succession plans for key positions; report progress within the performance review process.

Other duties as assigned 

• Accept delegated tasks willingly and follow through on assignments with accountability and attention to detail.
• Take on various projects and assignments from management, ensuring timely completion and alignment with company goals.
• Provide regular updates to leadership on assigned projects, meeting deadlines and delivering quality results.
• Assist with department and company-wide initiatives, including research, surveys, audits, and process improvements.
• Stay flexible and ready to take on additional responsibilities as needed to support team and organizational objectives.

Salary Range: $157,323 - $206,487. Compensation varies based on skills, knowledge, and education. We consider factors such as specialized skills, depth of knowledge in the field, and educational background to ensure fair and competitive pay.  

 Benefits 

We offer competitive compensation, an incentive bonus plan, outstanding career opportunities, an exceptional work environment, and an impressive benefits package, which starts with medical, family and bereavement leave; same-sex domestic partner benefits; short- and long-term disability programs; and an employee assistance program. There's more:   

• Health, dental, and vision insurance
• Health care tax-free spending accounts with a company match
• 401(k) and Roth IRA with company match, as well as catch-up plans for both
• Vacation days, sick days, and paid personal days each calendar year (with vacation increases based on length of service)
• Paid holidays each calendar year
• Life and travel insurance
• Tax-free commuter benefits
• In-person and online learning opportunities
• Cross-function career opportunities
• Business casual work environment
• Time off to volunteer
• Matching donations to qualifying nonprofit organizations
• Company-sponsored participation at non-profit events

 About The Doctors Company 

The Doctors Company is the nation’s largest physician-owned medical malpractice insurer. Founded and led by physicians, we are committed to advancing, protecting, and rewarding the practice of good medicine.  

The Doctors Company is proud to be Certified™ by Great Place to Work®.