AI Governance Engineer - 6 Month Contract - Inside IR35 - Remote

AI Governance Engineer - 6 Month Contract - Inside IR35 - Remote

Contract Type: Initial 6 month contract (Inside IR35)
Rate: £600-£650 per day
Location: Hybrid in London

Role Overview

We are looking for an AI Governance Engineer to join a leading Professional Services firm on a contract basis, supporting the delivery of a mature, EU AI Act-aligned governance capability. You will implement Microsoft 365 AI security controls, maintain an end-to-end AI system inventory, deploy risk-based governance frameworks, and integrate these processes into enterprise platforms including LeanIX and OneTrust. Working across Legal, Security, and Data Governance teams, you will also produce clear technical documentation and reporting to keep senior stakeholders informed - playing a key role in the organisation's transition to an AI-led operating model.

Key Responsibilities:

Implement M365 AI governance controls

• Configure and maintain DLP rules, sensitivity labels, Conditional Access policies, and audit logging for AI and Copilot workloads, ensuring controls are aligned to the firm's security posture and regulatory requirements.

Build and maintain the AI inventory
Lead AI system discovery and mapping, manage the sanctioning and vetting process for new AI tools, and maintain evidence traceability across the full AI life cycle to support audit and regulatory review.

Deploy risk-based governance controls
Assess AI systems against defined risk categories, apply scoring and treatment frameworks, and ensure controls are traceable to regulatory obligations - including EU AI Act high-risk classifications where applicable.

Automate governance workflows
Design and support automated intake, approval, exception handling, and change management workflows using enterprise tooling - reducing manual overhead and improving governance cycle times.

Cross-functional coordination & reporting
Act as the connective tissue between Legal, Security, Data Governance, and business teams - consolidating risk inputs, maintaining stakeholder alignment, and preparing dashboards and status reports for senior governance forums.

What You Will Ideally Bring:

M365 AI security & governance
Hands-on delivery of DLP policies, sensitivity labels, Conditional Access, unified audit log configuration, and app governance for Copilot and AI workloads across M365 tenants.

AI risk & regulatory frameworks
Practical experience applying risk-based governance - categorising AI systems by risk tier, defining treatment actions, and aligning controls to EU AI Act obligations or equivalent regulatory frameworks.

Agentic & network-level AI controls
Technical understanding of agentic AI policy enforcement - agent triggers, pre-execution checks, safe action boundaries - combined with network-level controls via Zscaler, traffic inspection, and Microsoft Defender telemetry integration.

Enterprise governance platform integration
Experience connecting governance processes into platforms such as LeanIX (AI inventory), OneTrust (risk & compliance), and Microsoft Defender - ensuring end-to-end traceability from discovery through to treatment.

Documentation & stakeholder communication
Ability to produce clear, audience-appropriate materials - SOPs, runbooks, technical guidance, governance playbooks - as well as exec-ready status reports and dashboards for governance forums.