RemoteLeaf Logo
Log in Sign up

Sr Technical Data Security Architect- Remote (Anywhere in the U.S.)

4 weeks ago
United States
Full-time
Senior
Data Architect
Cybersecurity
Apache Spark AWS Azure Databricks Encryption GCP GitHub Actions HIPAA MLflow OAuth Power BI PowerShell Python Snowflake SQL Terraform
Apply Now
GuidePoint Security

GuidePoint Security

GuidePoint Security is a trusted cybersecurity consulting firm that provides expertise, solutions, and services to help organizations make informed decisions and minimize risks. Their elite team of experts offers holistic perspectives on cybersecurity,...

Internet Software & Services
251-1K
Founded 2011
View All Jobs 40

Description

  • Design and maintain end-to-end data security architecture across Microsoft Azure, Microsoft Fabric, Azure Synapse Analytics, ADLS Gen2, and Databricks Lakehouse Platform.
  • Define and enforce data classification, labeling, handling standards, and Zero Trust security patterns across the enterprise data ecosystem.
  • Develop reference architectures and security blueprints for data ingestion, transformation, storage, and consumption layers.
  • Lead threat modeling, security reviews, and risk assessments for data pipelines, analytics workloads, and new data initiatives.
  • Architect and govern Microsoft Fabric, Microsoft Purview, Azure network isolation, encryption, and identity-based access controls for data services.
  • Implement and optimize Databricks Unity Catalog, workspace security, fine-grained access control, masking, secrets management, and audit logging.
  • Ensure compliance with regulatory frameworks such as GDPR, CCPA, HIPAA, SOC 2 Type II, and PCI-DSS, and maintain audit and logging architectures.
  • Serve as a primary security advisor to data engineering, analytics engineering, and BI teams throughout the development lifecycle.
  • Lead mentoring, knowledge-sharing, and community-of-practice efforts to upskill engineers and architects on data security.
  • Collaborate with SecOps, SOC, legal, compliance, and privacy teams on detection, incident response, DSARs, and executive reporting.

Requirements

  • 5+ years of experience in data engineering, data architecture, or information security, with at least 5 years focused on data security architecture.
  • Deep hands-on expertise with Microsoft Azure data services, including Azure Data Lake Storage Gen2, Azure Synapse Analytics, Azure Data Factory, Azure SQL Database, and Microsoft Fabric.
  • Demonstrated expertise implementing Databricks Unity Catalog, including workspace federation, metastore design, and fine-grained access control.
  • Strong proficiency with Microsoft Purview, including data map configuration, classification rules, sensitivity labels, and policy enforcement.
  • Expert-level knowledge of Azure identity and access management, including Entra ID, Managed Identities, Conditional Access, PIM, and service principal governance.
  • Hands-on experience with Azure Key Vault, customer-managed encryption keys, and secrets management integration with data platforms.
  • Solid understanding of Zero Trust, least privilege, and data minimization principles.
  • Experience with regulatory compliance programs such as GDPR, CCPA, HIPAA, SOC 2, and PCI-DSS as applied to data platforms.
  • Proficiency in SQL and at least one scripting or programming language such as Python, PySpark, PowerShell, or Terraform for security automation.
  • Strong written and verbal communication skills with the ability to explain complex security concepts to technical and non-technical audiences.
  • Experience securing data workloads across multi-cloud environments such as Azure, AWS, and/or GCP.
  • Hands-on experience with Snowflake data security, including RBAC/DAC, row- and column-level security, dynamic masking, network policies, Private Link, and data sharing governance controls.
  • Proven ability to support presales activities such as technical discovery, RFP/RFI responses, solution demonstrations, and client-facing proposal writing.
  • Active or preferred certifications such as AZ-500, DP-203, Databricks Certified Data Engineer Professional, CISSP, or CISM.
  • Experience with Microsoft Sentinel for SIEM integration and anomaly detection.
  • Familiarity with Databricks Delta Sharing, Cleanroom, and cross-cloud governance patterns.
  • Experience with infrastructure-as-code tools such as Terraform or Bicep for automated data platform deployments.
  • Background in data mesh or federated data governance operating models.
  • Exposure to AI/ML security considerations, including model governance, training data security, and responsible AI frameworks.
  • Experience in financial services, healthcare, or other highly regulated industries.

Benefits

  • Remote workforce primarily for U.S.-based employees, with some travel required for certain roles and possible on-site work for Federal positions.
  • Medical insurance options including a Zero Deductible PPO plan and a High Deductible Health Plan with HSA contributions.
  • Dental insurance where GuidePoint pays 100% of the employee premium and 75% of family premiums.
  • 12 corporate holidays plus a Flexible Time Off (FTO) program.
  • Mobile phone and home internet allowance.
  • Eligibility for a retirement plan after 2 months at open enrollment.
  • Pet benefit option.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Redox

Staff DevSecOps Engineer

Redox 51-250 Internet Software & Services

Redox is hiring a Staff DevSecOps Engineer to strengthen the security and reliability of its AWS/EKS platform for secure healthcare data exchange.

United States Full-time Lead DevOps Engineer Security Engineer
$190k-$199k
Argo CD AWS CI/CD DevSecOps Docker GitHub Actions Go Grafana Helm InfluxDB Kafka Kubernetes Node.js PostgreSQL Prometheus Python Redis Secrets Management Terraform TypeScript
15 hours, 36 minutes ago
G

Senior Security Engineer

Gauntlet 51-200 Software Development

Gauntlet is hiring a Senior Security Engineer to build and scale security across product, infrastructure, and operations for high-value DeFi systems.

United States Canada Full-time Senior Security Engineer
$180k-$210k
JavaScript LLM Python SIEM TypeScript
15 hours, 51 minutes ago
Block

Senior Security Engineer, Security Engineering & Operations

Block 10K-50K Capital Markets

Block is seeking a Security Engineering & Operations team member to help protect its systems, users, and customers by building detection and response capabilities within a cloud-native infrastructure security environment.

United States Full-time Senior Security Engineer
$153k-$270k
AWS Cybersecurity GCP Go Java Kubernetes Ruby SIEM
15 hours, 51 minutes ago
ELEKS

Head of Intelligence Products

ELEKS 1K-5K Construction & Engineering

ELEKS is seeking a Head of Intelligence Products in the United States to lead the strategy and architecture of a secure enterprise AI and data platform for regulated government, NGO, and enterprise customers.

United States Lead Data Architect Product Manager
LLM Snowflake
15 hours, 51 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers