InfoSec TPM: AI Security Strategy & Roadmap Lead (Hybrid)

Isomorphic Labs is applying frontier AI to help unlock deeper scientific insights, faster breakthroughs, and life-changing medicines with an ambition to solve all disease.

About Iso

Isomorphic Labs (IsoLabs) was launched in 2021 to advance human health by building on and beyond the Nobel-winning AlphaFold system. Since then, our interdisciplinary team of drug discovery experts and machine learning specialists has built powerful new predictive and generative AI models that accelerate scientific discovery at digital speed.

Your impact

As InfoSec Technical Program Manager, you will translate Isolabs’ security strategy into engineering reality. Reporting to the CISO, with a strong functional tie to the TPM Discipline Lead, you will operate at the critical intersection of risk management and research velocity. You will steer the InfoSec Roadmap, driving complex security initiatives—from protecting proprietary AI models to embedding Zero Trust architecture—across a fast-moving, highly regulated landscape.

What you will do

• Structure and drive multi-quarter security project roadmap, balancing long-term strategic initiatives (e.g., Cloud Security, Platform IAM, Secure SDLC) with immediate business needs.
• Lead ad-hoc initiatives and high-priority business requests, such as securing sensitive regulated data transfers for drug discovery to architecting guardrails for novel Agentic AI workflows.
• Drive the end-to-end delivery of security projects by working hand-in-hand with engineers, navigating the complex Alphabet/Google Ecosystem, and ensuring high-quality execution.
• Educate and advocate for InfoSec across the business, acting as a “product manager” regarding InfoSec’s capabilities, assets, responsibilities, and SLAs.
• Build extensive and trusting relationships with engineers, researchers and leaders across the company.
• Design automated, data-driven dashboards that provide the CISO and engineering leaders with clear visibility into program health, operational KPIs, and risk reduction metrics.

Skills and qualifications

Essential:

• Technical Credibility: Deep fluency across Security, Tech, and AI, allowing you to partner effectively with senior engineers and researchers.
• Strategic Execution: Proven track record of driving complex roadmaps from concept to delivery.
• Pragmatic Risk Management: Ability to make calculated trade-offs between security posture, technical debt, and research velocity.
• Cross-Functional Influence: Exceptional ability to influence without formal authority.
• Proactive Problem Solving: You anticipate architectural bottlenecks and untangle cross-team dependencies.
• Translational Communication: Highly skilled at translating CISO’s objectives into technical requirements.

Nice to have:

• Domain expertise in highly regulated, data-intensive industries (Life Sciences, Pharma, Deep Tech).
• Hands-on experience navigating GCP and the internal Alphabet/Google ecosystem.
• Engineering background with hands-on skill regarding Cloud Architecture, Zero Trust, IAM, and security observability.
• Familiarity with InfoSec and AI Management Frameworks (ISO 27001, ISO 42001).

Hybrid working

It’s hugely important for us to share knowledge and build strong relationships with each other, and we find it easier to do this if we spend time together in person. This is why we follow a hybrid model, and would require you to be able to come into the office 3 days a week (currently Tuesday, Wednesday, and one other day depending on which team you’re in).

We are committed to equal employment opportunities regardless of sex, race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, pregnancy or related condition or any other basis protected by applicable law.