Principal Cyber-Security Engineer - GRC and AI - Governance, Risk, and Complia

FICO (NYSE: FICO ) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential!

The Opportunity

As Principal Engineer for Cyber Security GRC & AI at FICO , you'll serve as the primary architect of how artificial intelligence is integrated into FICO 's global security governance, compliance, and risk functions — driving intelligent automation, building risk signal tools and dashboards, and supporting high-visibility audit engagements across Engineering, Product, Legal, and Security. If you're a cyber security professional who thrives at the intersection of emerging technology and strategic risk management, this role offers something rare: the chance to build something new.You'llbe a genuine thought leader — mentoring team members,representingGRC in cross-functional AI governance forums, and helping customers and regulators understand FICO 's approach to responsible AI.You'llwork across frameworks at thecutting edgeof security and AI regulation, including PCI DSS, SOC 2, ISO 27001, ISO 42001, and the EU AI Act.

WhatYou’llContribute

Architect and lead the implementation of AI-powered solutions to automate GRC workflows, including risk assessments, control monitoring, evidence collection, and policy management.

Serve as the technical voice for AI adoption within the Cyber Security GRC program, defining strategy and roadmap for integrating AI/ML tools across compliance, risk management, and audit functions.

Lead and coordinate complex, high-visibility audit engagements, ensuring stakeholder readiness andtimelyremediation of findings —leveragingAI tools to streamline evidence gathering and reporting.

Drive the development of intelligent dashboards, risk signal automation, and natural language processing (NLP) tools to improve GRC transparency and decision-making for leadership.

Identifyopportunities to reduce manual, repetitive GRC processes through automation and AI augmentation, and champion the adoption of these improvements across the team.

Partner with Engineering, Product, Legal, and Compliance teams to evaluate AI risk, including the governance of AI/ML models used within FICO products, ensuring alignment with applicable regulations and internal policies.

Respond to and lead the resolution of complex governance, risk, and compliance inquiries from internal and external stakeholders, including customers and regulators.

Develop and maintain GRC frameworks and standards aligned to PCI DSS, SOC 2, ISO 27001, ISO 42001, NIST CSF, NIST AI RMF, and emerging AI-specific regulatory requirements (e.g., EU AI Act, NIST AI 600-1).

Mentor and coach junior and mid-level GRC team members on AI tools, automation techniques, and program best practices to accelerate team capability maturity.

Act as a subject matter expert and thought lead