Senior Data Platform Security Architect

Senior Data Platform Security Architect

Posted 3 days ago by HR Pundits

Apply
Negotiable
Undetermined
Remote
Remote
Apply
Alation Data Catalog Amazon Web Services (AWS) Apache Atlas Apache Kafka Apache Spark Automation AWS Identity And Access Management (IAM) Azure Databricks Bash (Scripting Language) Cloud Computing Cloud Technology Cyber Security Databricks Data Classification Data Encryption Data Engineering Data Governance Data Infrastructure Data Loss Prevention Data Masking Data Security Device Tracking Software DevSecOps Encryption External Auditing Financial Services Google Cloud Google Cloud Platform (GCP) Identity And Access Management Key Management Management Management Systems Microsoft 365 Microsoft Azure Multi-Cloud Role-Based Access Control (RBAC) Sarbanes-Oxley Act (SOX) Compliance Security Information And Event Management (SIEM) Snowflake (Data Warehouse) SQL (Programming Language) Stakeholder Management Strategic Roadmaps Threat Modeling Tokenisation Vulnerability

Summary: The Senior Data Platform Security Architect will lead the design, implementation, and governance of security across the data platform ecosystem. This role requires collaboration with various teams to ensure the security, resilience, and compliance of the data infrastructure. The architect will be responsible for establishing security frameworks, conducting risk assessments, and mentoring junior engineers. A strong background in data platform security architecture is essential for success in this position.

Key Responsibilities:

  • Architect and own end-to-end security frameworks for modern data platforms, including data warehouses, streaming pipelines, and analytics environments.
  • Define and enforce data security standards covering access control, encryption, data masking, tokenization, and secrets management.
  • Lead threat modeling and risk assessments for data platform components, identifying vulnerabilities and driving remediation efforts.
  • Design and implement Identity and Access Management (IAM) strategies, including Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC).
  • Establish and mature data classification policies and ensure appropriate security controls across classification tiers.
  • Partner with data engineering and platform teams to embed security throughout the data lifecycle.
  • Drive security requirements for cloud-native data services and ensure consistent security posture across multi-cloud or hybrid environments.
  • Own the design of audit logging, lineage tracking, and monitoring solutions to support incident detection and compliance reporting.
  • Collaborate with legal, compliance, and privacy teams to ensure adherence to regulations and frameworks.
  • Evaluate and recommend security tools and vendors.
  • Communicate security architecture decisions, risk posture, and strategic roadmaps to stakeholders.
  • Mentor and guide junior and mid-level engineers on secure data platform design patterns.

Key Skills:

  • 8+ years of experience in information security, with at least 4 years focused on data platform or cloud data security architecture.
  • Deep expertise in securing modern data platforms, including cloud data warehouses and real-time streaming systems.
  • Strong working knowledge of IAM frameworks, zero-trust principles, and access control models across cloud providers.
  • Hands-on experience with encryption technologies, Key Management Systems, and data masking techniques.
  • Familiarity with security standards and regulatory frameworks such as GDPR, CCPA, and PCI-DSS.
  • Proficiency in at least one scripting/programming language for automation and tooling.
  • Experience with security tooling such as SIEM platforms and vulnerability scanners.
  • Excellent written and verbal communication skills.

Salary (Rate): undetermined

City: undetermined

Country: undetermined

Working Arrangements: remote

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Title: Senior Data Platform Security Architect

Location: Remote

We are seeking an experienced and strategic Senior Data Platform Security Architect to lead the design, implementation, and governance of security across our data platform ecosystem. In this role, you will serve as the authoritative voice on data security architecture, collaborating cross-functionally with engineering, data, compliance, product, and cybersecurity teams to ensure our data infrastructure is secure, resilient, and compliant with applicable regulations.

Key Responsibilities

Architect and own end-to-end security frameworks for modern data platforms, including data warehouses, streaming pipelines, and analytics environments (e.g., Snowflake, Databricks, Microsoft Fabric, Kafka, Spark).

Define and enforce data security standards covering:

Access control

Encryption (at rest and in transit)

Data masking and tokenization

Secrets management

Lead threat modeling and risk assessments for data platform components, identifying vulnerabilities and driving remediation efforts.

Design and implement Identity and Access Management (IAM) strategies, including:

Role-Based Access Control (RBAC)

Attribute-Based Access Control (ABAC)

Least privilege principles

Establish and mature data classification policies and ensure appropriate security controls across classification tiers.

Partner with data engineering and platform teams to embed security throughout the data lifecycle from ingestion and transformation to storage, consumption, and archival.

Drive security requirements for cloud-native data services (AWS, Azure, Google Cloud Platform) and ensure consistent security posture across multi-cloud or hybrid environments.

Own the design of audit logging, lineage tracking, and monitoring solutions to support incident detection, forensics, and compliance reporting.

Collaborate with legal, compliance, and privacy teams to ensure adherence to regulations and frameworks.

Evaluate and recommend security tools and vendors (e.g., DSPM, DLP solutions).

Communicate security architecture decisions, risk posture, and strategic roadmaps to both technical and executive stakeholders.

Mentor and guide junior and mid-level engineers on secure data platform design patterns.

Required Qualifications

8+ years of experience in information security, with at least 4 years focused on data platform or cloud data security architecture.

Deep expertise in securing modern data platforms, including:

Cloud data warehouses

Data lakes / lakehouse architectures

Real-time streaming systems

Strong working knowledge of IAM frameworks, zero-trust principles, and access control models across cloud providers (AWS IAM, Azure AD/Entra ID, Google Cloud Platform IAM).

Hands-on experience with:

Encryption technologies

Key Management Systems (KMS/HSM)

Data masking and tokenization techniques

Familiarity with security standards and regulatory frameworks such as:

GDPR, CCPA, PCI-DSS, SOC 2, SOX, NIST CSF, USGCB, FCC Decree

Proficiency in at least one scripting/programming language (Python, SQL, Bash, or similar) for automation and tooling.

Experience with security tooling such as:

SIEM platforms

DSPM tools

DLP solutions

Vulnerability scanners

Excellent written and verbal communication skills, with the ability to translate complex technical risks into business-friendly language.

Preferred Qualifications

Relevant certifications such as:

CISSP

CCSP

AWS Security Specialty

Google Professional Cloud Security Engineer

Experience with Infrastructure-as-Code (Terraform, Pulumi) and DevSecOps practices.

Background in data governance tools (e.g., Collibra, Alation, Apache Atlas) and integration with security controls.

Experience working in regulated industries such as financial services or telecommunications.

Apply
Similar Jobs
Loading data...