Director of Artificial Intelligence Governance (Remote)

The SouthState story is one of steady growth, deep community roots, and an unwavering commitment to helping our customers move forward. Since our beginnings in the 1930s to becoming a trusted financial partner across the South and beyond - we are known for combining personal relationships with forward-thinking solutions.

We are committed to helping our team members find their success while maintaining the integrity of our values: building trust, fostering lasting relationships and pursuing excellence. At SouthState, individual contributions are recognized, potential is cultivated and team members are inspired to achieve their greater purpose. Your future begins here!

SUMMARY/OBJECTIVES

We are seeking a seasoned AI Cybersecurity GRC leader to develop and lead a dedicated governance program focused on securing Artificial Intelligence (AI) and Machine Learning (ML) technologies. This role will ensure that all AI/ML initiatives within the bank adhere to cybersecurity best practices, are compliant with emerging regulations, and align with enterprise risk management principles. The ideal candidate will work closely with the AI committees and working groups, cyber risk teams, IT, and Model Risk Management.

AI Cybersecurity Governance Development

• Develop and implement a cybersecurity governance framework for AI and ML initiatives across the enterprise.

• Define cybersecurity policy and control requirements specific to AI systems including model integrity, access controls, and auditability.

• Integrate AI-specific governance requirements into existing cybersecurity risk and compliance programs.

Threat and Risk Management for AI Systems

• Conduct cybersecurity risk assessments for AI/ML models in coordination with Model Risk Management

• Identify and mitigate risks related to adversarial, model poisoning, data leakage, and unauthorized model access.

• Establish threat modeling practices specific to AI technologies, including large language models (LLMs) and generative AI.

AI Use Case Oversight and Secure Enablement

• Review proposed AI use cases to ensure cybersecurity risks are identified and managed before deployment.

• Support safe experimentation by defining risk acceptance thresholds and guiding secure sandboxing practices.

• Collaborate with the enterprise architecture and AI teams to guide secure design and deployment of AI technologies.

Technology Onboarding and Control Validation

• Work with Cyber Architecture, Vendor Management, and other appropriate teams to evaluate cybersecurity posture of AI-enabling technologies including model development platforms, orchestration tools, and APIs.

• Ensure third-party and open-source AI technologies are assessed for cybersecurity vulnerabilities before onboarding.

• Validate deployment of technical controls including access restrictions, data loss prevention, encryption, and model explainability features.

Regulatory and Framework Alignment

• Ensure adherence to relevant cybersecurity regulations and standards including NIST AI RMF, ISO/IEC 27001/42001, and guidance from FFIEC, OCC, and other applicable authorities.

• Monitor the evolving regulatory landscape related to AI cybersecurity and update policies and processes accordingly.

• Prepare for and support internal audits and regulatory reviews pertaining to AI-related cybersecurity programs.

Qualifications

Required:

• Bachelor's degree in Cybersecurity, Computer Science, or related technical field or meet experience requirements.

• 10+ years of experience in cybersecurity governance, risk management, or secure system design within a regulated industry.

• Strong understanding of AI/ML technologies and associated cybersecurity risks.

• Working knowledge of regulatory requirements and cybersecurity frameworks applicable to AI.

• Excellent communication skills and ability to translate technical content into risk-based guidance for diverse audiences.

Preferred:

• Certifications such as CISSP, CISM, CRISC, or emerging credentials in AI governance or secure AI.

• Experience with AI security tooling, LLM security strategies, and adversarial AI mitigation.

• Background in banking or other highly regulated sectors.

Competencies & Personal Attributes

• Strategic thinker with the ability to operationalize complex cybersecurity governance models.

• Proactive and collaborative leader comfortable operating in a dynamic and emerging technology space.

• Strong analytical skills and the ability to assess and articulate cyber risks associated with AI deployments.

TRAINING REQUIREMENTS/CLASSES

Required annual compliance training, New Employee Orientation

PHYSICAL DEMANDS

Must be able to effectively access and interpret information on computer screens, documents, reports, and cash denominations, and identify customers. This position requires a large amount of time in front of a computer. This can be done sitting or standing with use of the right desk. This position may require bending and reaching.

WORK ENVIRONMENT

For telecommuters or hybrid: Telecommuting roles no matter if hybrid or 100% full time telecommuting must have a secure home office environment that is free from background noise and distractions. They must also have a reliable private internet connection that is not supplied by use of cellular data (hot spot). Cable or fiber connections are preferred. Requirements are subject to change, as new systems and technology is delivered.

TRAVEL

Travel may be required to come to meetings as needed.

Benefits | SouthState Careers

Equal Opportunity Employer, including disabled/veterans.