Director, AI & Technology Risk

Director, AI & Technology Risk San Francisco, CA Job Details Full-time $167,000 - $245,000 a year 1 day ago Benefits Health insurance 401(k) matching Qualifications Vendor contracts Computer Science PCI Automation ISO standards Bachelor of Science Engineering Bachelor's degree in business Information security Prompt engineering Information Security Bachelor's degree Model deployment NIST standards Risk management Third-party risk management Contracts APIs Cybersecurity Senior level AI Business Bachelor's degree in computer science Leadership Vendor risk management Generative AI Senior leadership 10 years Full Job Description Calling all originals: At Levi Strauss & Co., you can be yourself — and be part of something bigger. We're a company of people who like to forge our own path and leave the world better than we found it. Who believe that what makes us different makes us stronger. So add your voice. Make an impact. Find your fit — and your future. The Director of AI & Technology Risk serves as the enterprise security authority for artificial intelligence (including generative and agentic AI), automation, and latest technology risk across Levi Strauss & Co. You will partner with retail, digital, supply chain, corporate, and regional departments to embed security into strategy, procurement, technology adoption, and operational transformation projects. You will establish governance frameworks, risk standards, and secure enablement guardrails to ensure AI systems - particularly generative AI models, agentic workflows, and autonomous automation capabilities - are adopted responsibly, securely, and in alignment with enterprise risk tolerance. This Director-level role reports to the Senior Director of Cyber Risk & Strategy. You will provide leadership and oversight to Business Information Security Officers (BISOs) in Europe and Asia. Additionally, you will ensure a global risk posture and harmonized security engagement model. About the Job You will serve as subject matter expert between cybersecurity and global teams on generative AI, agentic AI, automation, and latest technology risk. You will establish and maintain the enterprise AI & Technology Risk framework, including standards and guardrails for generative and agent-based AI systems. You will define AI use case intake, review, and risk tiering processes for model deployment, prompt-based systems, and autonomous agents. You will develop security requirements addressing model abuse, prompt injection, data leakage, excessive autonomy, tool invocation risk, and third-party AI integration. You will partner with Procurement, Legal, Privacy, Data, and Enterprise Architecture to embed security requirements into AI vendor selection, contracts, and governance models. You will provide architectural risk guidance for AI integrations, APIs, RAG implementations, agent orchestration layers, automation workflows, and data usage patterns. You will lead BISOs in Europe and Asia, ensuring AI and technology risk management best practices and reporting across regions. You will guide measurable reduction of AI-related risk exposure through improved governance, control maturity, and executive visibility. You will participate in enterprise risk councils and executive forums to communicate generative and agentic AI risk posture and new threat trends. You will collaborate with Detection Engineering, Cloud Security, and AppSec teams to investigate and improve AI-related security incidents. You will monitor global regulatory developments (e.g., EU AI Act, GDPR) and assess impact to enterprise generative and agentic AI strategy. About You BA/BS in Business, Computer Science, Information Security, Engineering, or related field. Advanced degree desirable but not required. 10+ years of progressive experience in cybersecurity, risk management, or technology governance; 5+ years influencing senior business leaders. Expertise leading security programs in complex global, matrixed organizations. Experience managing distributed or regional security leaders. Quantify risk and communicate trade-offs in business terms. Experience with enterprise risk frameworks (NIST

CSF, ISO/IEC 27001, FAIR

), regulatory regimes (GDPR, PCI-DSS), and third-party risk management. Working knowledge of generative AI and agentic AI risk domains, including model lifecycle governance, prompt security, agent autonomy controls, and vendor AI oversight. Translate security goals into business-aligned execution roadmaps and measurable outcomes. Ability to challenge assumptions constructively and lead accountability across global teams. This is a hybrid work schedule based in our San Francisco, CA headquarters. We expect you in office 3 days per week, typically Tuesday-Thursday. Note, time in office can vary depending on needs. The expected starting salary range for this role is $167,000 - $245,000 per year . We may pay more or less than the posted range based on the location of the role. We will base the amount an employee will earn within the salary range on factors such as relevant education, qualifications, performance and needs. Levi Strauss & Co. (LS&Co.) offers a total rewards package that includes base pay, incentive plans, 401(k) matching, paid leave, health insurance, product discounts, and more designed to help you and your family stay healthy, meet your financial goals, and balance the demands of your work and personal life. Available benefits and incentive compensation vary depending upon the specifics of the role; details relating to a specific role will be made available upon request. Read more about our benefits here . LS&Co. is an affirmative action and equal employment opportunity employer. We welcome and value people from diverse cultures, backgrounds, and experiences to make LS&Co. a collective success. #LI-Hybrid EOE M/F/Disability/Vets

LOCATION

San Francisco, CA, USA

FULL TIME/PART TIME

Full time

FILL DATE

This position is expected to be filled by 06/11/2026. Current LS&Co Employees, apply via your Workday account.