Cybersecurity Specialist

Job Description

AI Security & Resilience Experts - Contract (Outside IR35)

Location: London / Hybrid - 2/3 days onsite Sector: UK Financial Services Rate: Competitive Market Rates (Role Dependent) IR35: InsideDay rate: up to £600 per dayLength: 9 months

All candidates must demonstrate:

• UK FinServ Compliance: Deep familiarity with DORA, FCA Operational Resilience, and the EU AI Act.
• AWS Bedrock Stack: Hands-on experience with Agents, Knowledge Bases, Guardrails, and model lifecycles.
• AI/ML Core: Mastery of FMs, RAG, tool-use, and non-deterministic agent logic.
• Security Frameworks: Proficiency in OWASP LLM Top 10 and NIST AI RMF.

Role 1: Identity Expert

• Mission: Secure the "Human-to-Agent" and "Agent-to-Resource" identity chain.
• Key Tasks: Lead SPIFFE/SPIRE rollouts with AWS Roles Anywhere; harden OBO (On-Behalf-Of) flows.
• Security: Implement sender-constrained tokens (PoP) and JIT for non-human identities.
• Threats: Modelling for Confused Deputy and Federation Hijacks; ensuring full traceability per EU AI Act Art. 12 & 14.

Role 2: Threat & Adversarial AI Expert

• Mission: Lead structured offensive modeling to identify systemic AI vulnerabilities.
• Key Tasks: Conduct STRIDE modeling and build attack trees for prompt injection and "Denial-of-Wallet" scenarios.
• Validation: Run scenario workshops to test real-world control effectiveness.
• Governance: Maintain an adversarial knowledge base and map safeguards to compliance frameworks.

Role 3: AI Evals & Red Teaming Expert

• Mission: Automate the "Release Gate" for AI systems through rigorous adversarial testing.
• Key Tasks: Integrate tools like Pyrit, Garak, or AgentDojo into CI/CD pipelines.
• Metrics: Build frameworks for uncertainty, drift detection, and success rates.
• Assurance: Own the AI-BOM and generate Article 15 evidence for bias, hallucination, and memorisation risks

Randstad Technologies is acting as an Employment Business in relation to this vacancy.