Apply on Employer Site

State Street · 1 day ago

Head of AI Security & Data Protection

Boston, MA

Full-time

Onsite

Director/Executive

$225K/yr - $338K/yr

15+ years exp

State Street is a leading global financial institution that focuses on managing risk and driving performance for institutional investors. They are seeking a Senior Vice President, Head of AI Security & Data Protection, responsible for defining and overseeing the strategy for securing AI and data protection, while leading teams to ensure the confidentiality and integrity of sensitive data assets.

FinanceBankingFinancial Services

H1B Sponsor Likely

Responsibilities

Develop and execute State Street’s global strategy for secure AI and data protection, aligned with business objectives and regulatory requirements

Define and steward secure AI architectures and threat modeling frameworks across the enterprise

Lead the identification, assessment, and mitigation of risks across enterprise data security, including emerging threats from quantum computing and AI

Champion security-by-design principles in all technology initiatives, integrating security into application development, infrastructure, and cloud environments

Develop and execute a comprehensive data protection strategy for customer, supplier, and product data, with actionable controls and measurable outcomes

Define, implement, and maintain data protection policies, standards, and procedures, ensuring ongoing compliance and executive sponsorship

Maintain deep knowledge of global data protection laws and frameworks (GDPR, CCPA, LGPD, NYDFS, PCI DSS, etc.) and industry standards (NIST, COBIT, ISO 27001)

Lead architecture, tooling selection, risk assessment, control design, and implementation for data protection and governance solutions

Establish and mature threat modeling practices for AI, integrating them into architecture and engineering processes

Oversee the development and implementation of pilot programs and testing for emerging technology security (e.g., Post-Quantum Cryptography migration, AI model governance)

Manage data protection for AI/Generative AI initiatives, including data governance for models, data provenance, and model risk considerations

Stay abreast of emerging threats and technologies, proactively enhancing State Street’s security posture in areas such as quantum computing, AI, and cloud security

Collaborate with architecture and engineering teams to evaluate and integrate suitable security solutions for emerging technologies

Oversee the design, implementation, and management of data security controls: DLP, data classification, encryption, tokenization, masking, database activity monitoring, and cloud data security posture management

Drive controls automation and governance technology initiatives (e.g., Archer, ServiceNow GRC) to streamline risk management, policy enforcement, and audit readiness

Integrate GRC with project/portfolio management tools (e.g., Jira, Clarity) for alignment of control requirements and remediation efforts

Develop and implement incident response plans and procedures, including considerations for 'Harvest Now, Decrypt Later' scenarios

Serve as a trusted advisor to the CISO, executive leadership, and business units on all matters related to enterprise architecture, data protection, and emerging technology security

Build strong partnerships with the Chief Data Officer (CDO), Chief Technology Risk Officer (CTRO), Chief Architect, Head of Emerging Technologies and business units to embed security requirements in business processes

Represent State Street in industry forums, conferences, and regulatory discussions related to data security and emerging technologies

Deliver measurable dashboards and KPIs/KRIs that drive action and provide insights into the effectiveness of security controls and architecture for AI and data programs

Synthesize input from diverse stakeholders to develop practical, scalable solutions and recommendations

Build, mentor, and lead high-performing teams of architects, engineers, and analysts, fostering expertise in AI security, data protection, and emerging technology security

Drive talent development, succession planning, and cross-functional collaboration

Qualification

AI SecurityData ProtectionCryptographyRegulatory ComplianceCloud SecurityData GovernanceThreat ModelingEnterprise ArchitectureLeadershipCommunicationInterpersonal SkillsStrategic Thinking

Required

Bachelor's degree in Computer Science, Information Security, or related field; Master's degree highly preferred

Relevant industry certifications (e.g., CISSP, CISM, CDPSE, CIPP/E, CRISC, certifications in cryptography or architecture) are highly desirable

Minimum of 15+ years of progressive experience in information security and enterprise architecture, with at least 8-10 years in senior leadership roles within large, complex organizations

Extensive experience in data protection, information lifecycle management, and data governance within regulated, global enterprises (banking/financial services preferred)

Proven experience in developing and implementing enterprise-wide security and architecture strategies and programs

Deep technical understanding of data security technologies, architectures, and cryptographic infrastructure, including PQC readiness

Experience with cloud security (AWS, Azure, GCP) and securing data in cloud environments

Broad expertise in cybersecurity frameworks and industry standards (NIST, COBIT, FFIEC, ISO 27001, etc.)

Exceptional leadership, communication, and interpersonal skills

Ability to translate complex technical concepts into clear, actionable insights for technical and non-technical audiences

Strategic thinker with a results-oriented approach and foresight to anticipate future threats

Demonstrates the ability to drive organizational change with clear sponsorship, wide adoption, and measurable impact

Proactively develops new skills and capabilities beyond current comfort zones

Benefits

401K with company match

Insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages

Paid-time off including vacation, sick leave, short term disability, and family care responsibilities

Access to our Employee Assistance Program

Incentive compensation including eligibility for annual performance-based awards

Eligibility for certain tax advantaged savings plans

Inclusive development opportunities

Flexible work-life support

Paid volunteer days

Company

State Street

Glassdoor3.5

State Street offers a range of financial services, including investment management, research and trading, as well as asset management.

Founded in 1792

Boston, Massachusetts, USA

10001+ employees

https://www.statestreet.com/

H1B Sponsorship

State Street has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (1)

Funding

Current Stage

Public Company

Total Funding

$12.05B

2025-10-23Post Ipo Debt· $1B

2025-04-24Post Ipo Debt· $2B

2025-02-06Post Ipo Equity· $750M

Leadership Team

Ronald O'Hanley

Chairman and Chief Executive Officer

Renee LaRoche-Morris

Senior Vice President, Chief of Staff to the COO; Head of CAO Services

Recent News

Business Wire

Mariner Pairs with State Street to Scale Operations and Support Growth to 5,000 Advisors via Charles River’s Wealth Platform

2026-02-12

Financial IT

LSEG Advances Next Generation of Digital Markets Infrastructure with On-Chain Settlement

2026-02-12

QuotedData

State Street prioritises global small-cap fund for UK investors as it rolls out three new active ETFs

2026-02-11

Company data provided by crunchbase