| Principal Security Architect | Threat model, trust boundaries, key custody, revocation, runner isolation and fail-closed behavior. | Signed architecture review, misuse cases, acceptance criteria and unresolved-risk register. |
| Senior Platform / SRE Engineer | Topology, capacity, queues, databases, disaster recovery, observability and runbooks. | Infrastructure prototype, load tests, recovery exercise and measured cost model. |
| Application Security Engineer | Path traversal, dependency attacks, prompt-to-tool escalation, token replay and cross-tenant isolation. | Independent review, penetration tests and remediation verification. |
| Specialized AI Systems Expert | Agent architecture, model/tool contracts, evaluation sets, containment and approval placement. | Evaluation protocol, failure taxonomy, model-agnostic interfaces and measured reliability. |
| GRC / Privacy Counsel | System boundary, data classification, vendor obligations, regional requirements and controls. | Control matrix, data-flow inventory, retention schedule and policy set. |
| Frontier model review | Critique manifests, policies, failure cases and developer documentation. | Recorded findings reviewed and accepted by a responsible human expert. |