AI Compliance Engineer (Responsible AI)

<div><h3>Overview</h3><p>SnowHeap is a UAE-based AI consultancy. We ship production LLM systems for regulated industries across MENA/EU/US and need an<b>AI Compliance Engineer</b>to own model governance, safety, and evaluations across our stack (OpenAI, Claude, Agno, CrewAI, LangChain/LangGraph/LangSmith).</p><p>You’ll design controls that let us move fast and stay auditable: policy to pipeline, document to dashboard. Location: Remote (MENA/EU time zones) with optional Dubai meetups.</p><p><b>Contract Type:</b>6-month temporary contract (with potential extension based on project needs and performance).</p><p><b>Location:</b>Remote (MENA/EU time zones). Candidates must be able to align at least<b>80% of their working hours with UAE time</b>(depending on their location). Optional Dubai meetups.</p><p>Please note:<b>We are unable to provide visa sponsorship for this role</b>at this time.</p><h3>Responsibilities</h3><ul><li>Define and run SnowHeap’s<b>AI governance program</b>: policies, control library, risk register, exception handling, and sign-offs (from ideation to production).</li><li>Map laws and frameworks (EU AI Act, GDPR/PDPL/DIFC DPL, NIST AI RMF, ISO/IEC 42001&27001, SOC 2) to<b>concrete technical controls</b>in our products and client projects.</li><li>Build an<b>evaluation harness</b>for LLMs/agents: golden sets, scenario tests, adversarial probes, offline evals, and online A/Bs; track hallucination, safety, bias, privacy leakage, robustness, cost, and latency.</li><li>Implement<b>guardrails</b>(PII detection, jailbreak/prompt-injection defenses, output filters, content safety) and wire them into pipelines (LangChain/LangGraph, CrewAI/Agno).</li><li>Stand up<b>audit-ready telemetry</b>: data lineage, prompt/response logging with redaction, model cards, decision traces, and approval workflows (LangSmith/observability tools).</li><li>Partner with Security/Privacy on<b>DPIAs/TRA</b>, retention, DLP, key management, access controls, and vendor risk (OpenAI/Anthropic terms, Azure/GCP/AWS).</li><li>Lead<b>red-teaming exercises</b>; coordinate incident response playbooks for model failures and safety regressions.</li><li>Review prompts, fine-tunes, and datasets for policy compliance; curate evaluation datasets and “go/no-go” acceptance criteria.</li><li>Coach engineers, sales, and clients; write crisp docs and checklists; run internal trainings and readiness reviews.</li><li>Contribute to proposals and client audits; turn compliance into a<b>product advantage</b>.</li></ul><h3>Requirements</h3><ul><li>4+ years in Security/Privacy/Compliance, ML governance, or safety engineering, with<b>2+ years on LLM products</b>.</li><li>Strong grasp of<b>LLM stacks</b>: OpenAI&Azure OpenAI, Claude, Agno, CrewAI, LangChain/LangGraph/LangSmith.</li><li>Hands-on<b>model evaluation</b>: building test sets, rubric-based scoring, offline/online evals, statistical analysis; familiarity with tools or libraries for evals/observability.</li><li>Working knowledge of<b>privacy&AI risk</b>(GDPR/PDPL/DIFC DPL, EU AI Act concepts, NIST AI RMF), and how to turn them into safeguards, SOPs, and controls.</li><li><b>Context engineering expertise:</b>ability to design, test, and audit prompt chains, context windows, and memory architectures for compliance, safety, and explainability.</li><li>Solid scripting in<b>Python/Pydantic</b>(TypeScript nice to have); able to review PRs and add compliance checks to CI/CD.</li><li>Cloud/MLOps fluency: one of AWS/GCP/Azure; containers, secrets, monitoring, access controls.</li><li>Excellent writing and stakeholder skills; can say “no” with rationale and ship a safer “yes”.</li></ul><h3>Nice-to-haves</h3><ul><li>ISO 27001/ISO 42001/SOC 2 implementation or audit experience.</li><li>Prior<b>red-teaming</b>of LLMs (prompt-injection, data exfiltration, harmful content).</li><li>Experience in regulated domains (financial services, healthcare, public sector).</li><li>Arabic or UAE market experience.</li></ul><h3>Benefits</h3><ul><li>High-ownership role shaping SnowHeap’s AI governance and product roadmap.</li><li>Remote-first across MENA/EU time zones; flexible hours.</li><li>Competitive compensation with performance bonus.</li><li>Fast career growth, build the function and lead it.</li></ul><p>If you’ve shipped real LLM systems and can turn regulation into<b>running code and measurable quality</b>, we want to talk.</p><p>Apply with your CV plus any of the following (optional but helpful):</p><ul><li>Links to eval frameworks, safety work, or red-team write-ups you’ve done</li><li>Example policies/checklists you authored (redacted is fine)</li><li>GitHub or snippets showing eval harnesses, guardrails, or LangSmith/LangGraph workflows</li></ul><p>SnowHeap is an equal-opportunity employer. We value diverse perspectives and hire for talent, integrity, and impact.</p></div>#J-18808-Ljbffr