To Apply for this Job Click Here
We are seeking an experienced professional to help design, assess, and secure modern data platforms across on-prem and cloud environments (AWS, Azure, GCP a plus). This role involves guiding security-by-design practices for data ingestion, storage, processing, orchestration, and governance while balancing client-facing work and internal standards development.
Key Responsibilities
- Security Design & Analysis: Evaluate IAM/RBAC/ABAC models, encryption, key/secrets management, data retention, and network boundaries. Assess data flows, classify sensitive datasets, and design secure architectures and guardrails.
- Compliance & Testing: Perform threat modeling, review configurations and code for security issues, and integrate checks into CI/CD pipelines. Ensure alignment with frameworks such as SOC 2, ISO 27001, NIST, HIPAA, PCI, and GDPR/CCPA. Deliver risk assessments, remediation roadmaps, and executive-ready reports.
- Collaboration: Work closely with data, analytics, ML, DevOps, and security teams to embed controls across the data lifecycle. Contribute to reusable playbooks, policies, and open-source reference stacks. Support pre-sales by assisting with workshops, scoping, and proposals.
- Incident Response & Improvement: Provide guidance during data-related security incidents, track remediation progress, and evolve standards based on lessons learned. Stay current on emerging technologies like DSPM, DLP, data contracts, and zero-trust data access.
Required Qualifications
- 6-8 years of professional data engineering experience with strong SQL and Python skills.
- Hands-on expertise with Spark, Databricks, Snowflake, or Redshift in production.
- Experience designing secure pipelines, warehouses, and Lakehouse architectures on AWS and/or Azure.
- Proficiency with Docker, Git-based CI/CD, Terraform (or equivalent IaC), and security fundamentals (IAM, encryption, KMS/HSM, secrets management, network segmentation).
- Knowledge of data modeling, governance, lineage, and retention practices.
- Strong communication skills with experience in consulting or client-facing environments.
Preferred Qualifications
- Orchestration and transformation tools (Airflow, Dagster, Prefect, dbt).
- Streaming and CDC platforms (Kafka, Kinesis, Event Hubs, Debezium).
- Data quality and catalog/lineage tools (Great Expectations, Soda, Monte Carlo, DataHub, OpenMetadata, Purview).
- Cloud-native governance and DLP/DSPM tools.
- Familiarity with policy-as-code (OPA, Sentinel).
- Relevant certifications such as AWS/Azure/GCP Architect or Security, CISSP, or CCSP.
Desired Competencies
- Strong problem-solving and threat-modeling mindset.
- Ability to explain complex security concepts to technical and non-technical stakeholders.
- Highly collaborative across engineering, product, and security functions.
- Commitment to continuous learning and staying ahead of emerging threats.
- Strong attention to detail in reviews, audits, and design.
MKE1429236EM_1758141762