Data Platform Security Architect
Role details
Job location
Tech stack
Job description
Hello All, Hope you are doing great Please go through the job description and let me know your interest. Job Title: Data Platform Security Architect Work Location: Remote Duration: Long Term Contract About the Role We are seeking an experienced and strategic Senior Data Platform Security Architect to lead the design, implementation, and governance of security across our data platform ecosystem. In this role, you will serve as the authoritative voice on data security architecture, working cross-functionally with engineering, data, compliance, product, and cybersecurity teams to ensure that our data infrastructure is secure, resilient, and compliant with applicable regulations. Responsibilities * Architect and own end-to-end security frameworks for data platforms, including data lakes, data warehouses, streaming pipelines, and analytics environments (e.g., Snowflake, Databricks, Microsoft Fabric, Kafka, Spark). * Define and enforce data security standards covering access control, encryption, incident detection, forensics, and compliance reporting. * Collaborate with legal, compliance, and privacy teams to ensure adherence to regulations such as GDPR, CCA, SOC 2, SOX, USGCB, FCCDecree, and other applicable frameworks. * Serve as a technical mentor and subject matter expert, guiding junior and mid-level engineers on secure data platform design patterns. * Evaluate and recommend security tooling and vendors (e.g., data security posture management, DSPM, DLP solutions). * Communicate security architecture decisions, risk posture, and strategic roadmaps to executive stakeholders and technical teams alike. Required Qualifications * 8+ years of experience in information security, with at least 4 years focused on data platform or cloud data security architecture. * Deep expertise in securing modern data platforms - including cloud data warehouses, data lakes, lakehouse architectures, and real-time streaming systems. * Strong working knowledge of IAM frameworks, zero-trust
Requirements
principles, and access control models across cloud providers (AWS IAM, Azure AD/Entra ID, Google Cloud Platform IAM). * Hands-on experience with encryption technologies, key management systems (KMS/HSM), and data masking/tokenization techniques. * Familiarity with security standards and regulatory frameworks (GDPR, CCPA, PCI-DSS, SOC 2, SOX, NIST CSF, USGCB, and FCC Decree). * Proficiency in at least one scripting or programming language (Python, SQL, Bash, or similar) for automation and tooling. * Experience with security tooling such as SIEM platforms, DSPM tools, DLP solutions, and vulnerability scanners. * Excellent written and verbal communication skills, with the ability to translate complex technical risks into business-understandable language. Preferred Qualifications * Relevant security certifications such as CISSP, CCSP, AWS Security Specialty, or Google Professional Cloud Security Engineer. * Experience with infrastructure-as-code (Terraform, Pulumi) and DevSecOps practices. * Background in data governance tools (e.g., Collibra, Alation, Apache Atlas) and their integration with security controls. Experience in a regulated industry such as financial services or telecommunications. Familiarity with privacy-enhancing technologies (PETS) such as differential privacy or federated learning Thanks & Regards
