Distinguished Engineer, End-to-End Security Architect

The Distinguished Engineer, End-to-End Security Architect at Graphcore is a pivotal role within the Systems Engineering organization, responsible for defining and leading the security architecture of Graphcore's inference service platform. This position involves establishing a comprehensive security strategy that encompasses platform, infrastructure, networking, service operations, customer assurance, and compliance readiness. The role requires close collaboration with various engineering and operational teams to ensure the platform delivers robust protection, resilience, and trust for customers.

Key responsibilities include owning the end-to-end security architecture for the inference service platform, covering infrastructure, networking, APIs, operational controls, monitoring, and customer assurance. The role involves defining security principles, threat models, trust boundaries, tenant isolation requirements, and architectural standards for the service. Additionally, the position entails establishing security requirements for deployment environments, including physical security, operational controls, access management, and asset protection. The role also involves defining platform security requirements across hardware, firmware, secure boot, attestation, software integrity, and lifecycle management. Leading the design of network and service isolation controls, secure communications, segmentation strategies, and administrative access protections are also key aspects of the role. The position requires ownership of security architecture for authentication, authorization, secrets management, encryption, key management, and data protection controls. Defining privileged access management approaches, audit requirements, access review processes, and emergency access procedures are also part of the responsibilities. Establishing logging, monitoring, telemetry, incident response, and security assurance requirements across the service lifecycle is another critical aspect of the role. The role involves partnering with engineering and operations teams to ensure security requirements are effectively implemented, maintained, and validated. Assessing security posture against customer, contractual, regulatory, and internal requirements, managing risk-based decisions where required, and supporting customer security reviews, audits, penetration testing activities, security questionnaires, and technical assurance discussions are also part of the responsibilities. Providing technical leadership, architectural guidance, mentoring, and design review expertise across multiple teams and disciplines is a key component of the role.

The ideal candidate should possess an advanced degree in Computer Science, Computer Engineering, Cybersecurity, Electrical Engineering, or a related technical discipline, or equivalent practical experience. Significant experience in security architecture, platform security, cloud security, infrastructure security, or large-scale service security is essential. Demonstrated experience defining and owning security architecture for customer-facing platforms, infrastructure services, or large-scale production environments is required. A deep understanding of threat modeling, zero-trust principles, tenant isolation, privileged access management, cryptographic controls, and secure operations is necessary. Strong knowledge of platform security technologies, including trusted execution mechanisms, secure boot, attestation, firmware integrity, and supply-chain security concepts, is important. Experience defining security requirements for data center deployments, operational environments, and physical security controls is required. Expertise in network security architecture, segmentation, management-plane protection, secure communications, monitoring, and access control is essential. Experience with key management, secrets management, certificate lifecycle management, and encryption technologies is necessary. Experience securing APIs, deployment pipelines, service control planes, and operational tooling is important. A strong understanding of logging, monitoring, incident response, security operations, and evidence management practices is required. Experience supporting customer security reviews, audits, penetration testing activities, and executive-level security discussions is essential. Excellent communication and stakeholder management skills, with the ability to influence technical and non-technical audiences, are necessary. Proven ability to lead through influence across engineering, security, operations, compliance, and customer-facing teams is important.

While specific compensation details are not provided, Graphcore offers a comprehensive benefits package that includes medical, dental, and vision coverage, Flexible Spending Accounts (FSAs), Health Savings Accounts (HSAs), disability and life insurance, a 401(k) retirement plan, commuter benefits, wellness services, and an Employee Assistance Programme (EAP). The company provides flexible working arrangements designed to support employees' health, wellbeing, and financial future.

Graphcore is a globally recognized leader in Artificial Intelligence computing systems, developing hardware, software, and systems infrastructure that unlock the next generation of AI breakthroughs. As part of the SoftBank Group, Graphcore is committed to enabling Artificial Super Intelligence and ensuring its benefits are accessible to everyone. The company fosters a culture of continuous learning and innovation, drawing teams from diverse backgrounds, including AI research specialists, silicon designers, software engineers, and systems architects. This role offers an opportunity to work in a dynamic environment, contributing to the advancement of AI technologies and the widespread adoption of AI solutions across various industries.