×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security AI Engineer Systems Engineer

Principal Governance, Risk, and Compliance Engineer

Job in Greater London, London, Greater London, EC1A, England, UK
Listing for: Aisafety
Full Time position
Listed on 2026-01-19
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security, AI Engineer, Systems Engineer
Job Description & How to Apply Below
Location: Greater London

The AI Security Institute is the world's largest and best-funded team dedicated to understanding advanced AI risks and translating that knowledge into action. We’re in the heart of the UK government with direct lines to No. 10 (the Prime Minister's office), and we work with frontier developers and governments globally.

We’re here because governments are critical for advanced AI going well, and UK AISI is uniquely positioned to mobilise them. With our resources, unique agility and international influence, this is the best place to shape both AI development and government action.

About the Team

Security Engineering at the AI Security Institute (AISI) exists to help our researchers move fast, safely. We are founding the Security Engineering team in a largely greenfield cloud environment, we treat security as a measurable, researcher centric product. Secure by design platforms, automated governance, and intelligence led detection that protects our people, partners, models, and data. We work shoulder to shoulder with research units and core technology teams, and we optimise for enablement over gatekeeping, proportionate controls, low ego, and high ownership.

What

you might work on
  • Help design and ship paved roads and secure defaults across our platform so researchers can build quickly and safely
  • Build provenance and integrity into the software supply chain (signing, attestation, artefact verification, reproducibility)
  • Support strengthened identity, segmentation, secrets, and key management to create a defensible foundation for evaluations at scale
  • Develop automated, evidence driven assurance mapped to relevant standards, reducing audit toil and improving signal
  • Create detections and response playbooks tailored to model evaluations and research workflows, and run exercises to validate them
  • Threat model new evaluation pipelines with research and core technology teams, fixing classes of issues at the platform layer
  • Assess third party services and hardware/software supply chains; introduce lightweight controls that raise the bar
  • Contribute to open standards and open source, and share lessons with the broader community where appropriate

If you want to build security that accelerates frontier scale AI safety research, and see your work land in production quickly, this is a good place to do it.

Role Summary

Own and ope rationalise AISI's governance, risk, and compliance (GRC) engineering practice. This role sits at the intersection of security engineering, assurance, and policy, turning paper-based requirements into actionable, testable, and automatable controls. You will lead the technical response to Gov Assure and other regulatory requirements, and ensure compliance is continuous and evidence driven. You will also extend GRC disciplines to frontier AI systems, integrating model lifecycle artefacts, evaluations, and release gates into the control and evidence pipeline.

Responsibilities
  • Translate regulatory frameworks (e.g. Gov Assure, CAF) into programmatic controls and technical artefacts
  • Build and maintain a continuous control validation and evidence pipeline
  • Develop and own a capability-based risk management approach aligned to AISI's delivery model
  • Maintain the AISI risk register and risk acceptance/exception handling process
  • Act as the key interface for DSIT governance, policy, and assurance stakeholders
  • Work cross-functionally to ensure risk and compliance are embedded into AISI delivery life cycles
  • Extend controls and evidence to the frontier AI model
  • Integrate AI safety evidence (e.g., model/dataset documentation, evaluations, red-team results, release gates) into automated compliance workflows
  • Define and implement controls for model weights handling, compute governance, third-party model/API usage, and model misuse/abuse monitoring
  • Support readiness for AI governance standards and regulations (e.g., NIST AI RMF, ISO/IEC 42001, ISO/IEC 23894; EU AI Act exposure where relevant)
Profile requirements
  • Staff or Principal-level engineer or technical GRC specialist
  • Experience in compliance-as-code, control validation, or regulated cloud environments
  • Familiar with YAML, Git Ops, structured artefacts, and automated policy checks
  • Equ…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search