AI Security & Identity Lead

About the role

About Rimini Street, Inc. Rimini Street, Inc. (Nasdaq: RMNI), a Russell 2000® Company, is a proven, trusted global provider of end-to-end, mission-critical enterprise software support, managed services and innovative Agentic AI ERP solutions, and is the leading third-party support provider for Oracle, SAP and VMware software. Our comprehensive portfolio of unified solutions help run, manage, support, customize, configure, connect, protect, monitor, and optimize enterprise application, database and technology software, enabling our clients to achieve better business outcomes, significantly reduce costs and reallocate resources towards strategic projects. The Company has signed thousands of contracts with Fortune Global 100, Fortune 500, midmarket, public sector and government organizations who selected Rimini Street as their trusted, proven mission-critical enterprise software solutions provider and achieved better operational outcomes, realized billions of US dollars in savings and funded AI and other innovation investments. We are actively seeking a Security & Identity Lead - Agentic ERP Platform. This hybrid role is based in our Selangor or Penang office. Position Summary The Security & Identity Lead owns the security architecture, identity management, and compliance posture of Rimini Street's Agentic ERP Platform. This role is responsible for ensuring that AI agent interactions, data access, and system integrations meet enterprise security standards - designing authentication, authorization, and data isolation frameworks that protect customer environments - and for producing the audit evidence, compliance reporting, and customer-facing security posture that make those controls defensible to auditors and client security teams. Reporting to the VP, Platform Engineering, this leader builds and runs the Malaysia-based security and compliance observability function - partnering with Platform Engineering, Operations, and Delivery across all three hubs. The ideal candidate combines deep security engineering expertise with practical experience securing cloud-native, multi-tenant platforms, and brings the leadership maturity to grow a small team and represent platform security to executive, audit, and customer audiences. Essential Duties & Responsibilities Security Architecture Design and implement the platform's security architecture, covering authentication, authorization, encryption, and audit logging. Define trust boundaries and access control policies that govern agent-to-system and user-to-agent interactions. Establish data isolation and multi-tenancy security patterns that protect customer data across all platform layers. Conduct threat modelling and security risk assessments for new platform features and integrations, including AI-specific risks (prompt injection, indirect injection, RAG corpus contamination). Define and enforce security standards for API endpoints, data storage, inter-service communication, and air-gap deployment scenarios. Identity & Access Management Design and implement IAM solutions including SSO, OAuth 2.0, OIDC, and SAML integrations for enterprise customers. Build role-based access control (RBAC) and attribute-based access control (ABAC) frameworks for platform users and agents, including policy-as-code (OPA/Rego) authoring and review. Implement token management, session handling, and credential lifecycle policies. Design customer identity federation patterns that integrate with enterprise identity providers. Establish service-to-service authentication and authorization for internal platform components, including mTLS and HashiCorp Vault-managed secrets. Compliance, Audit & Observability Own platform compliance posture against relevant security frameworks (SOC 2, ISO 27001, GDPR, and industry-specific requirements). Lead operational and security observability that turns platform telemetry into compliance evidence, customer-facing posture reports, and audit artefacts. Establish data classification policies and implement appropriate controls for each classification level. Coordinate with Rimini Street's corporate security and compliance teams to align platform security with organisational policies. Produce security documentation, including architecture decision records, threat models, and audit-ready compliance evidence. Support the Indemnification Control Owner with integrated quarterly configuration audit reports covering monitored vendor indemnification conditions. Own client-facing audit and security response: produce evidence packages on demand for client audits, regulatory reviews, and security questionnaires. Security Operations Implement security scanning and vulnerability management for platform code, dependencies, and infrastructure (PII detection via Microsoft Presidio or equivalent). Align platform incident response with Rimini Street's corporate security incident process. Conduct security code reviews and establish secure coding guidelines for engineering te

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at riministreet? Share your experience