Senior Data Architect - Platform Security

Strictly W2 Only - No C2C Job Title: Senior Data Platform Security Architect Location: Remote Duration: 8 Months Contract Work Type: Remote Only USC's and Permanent Residences are accepted. Key Responsibilities • Lead the design, implementation, and governance of enterprise data platform security architecture. • Define and implement security frameworks for data platforms, including: Data lakes, Data warehouses, Streaming pipelines, Analytics platforms • Architect security for modern data platforms such as Snowflake, Databricks, Microsoft Fabric, Kafka, and Spark. • Establish enterprise data security standards, including encryption, data masking, tokenization, and secrets management. • Design and implement Identity & Access Management (IAM) frameworks using RBAC, ABAC, and zero-trust models. • Lead threat modeling, risk assessments, and remediation strategies across enterprise data platforms. • Implement data governance and lifecycle security across ingestion, transformation, storage, analytics, and archival layers. • Define cloud security architectures for data platforms across AWS, Azure, and GCP environments. • Implement monitoring, audit logging, and security observability for data environments. • Enable incident detection, forensics analysis, and compliance reporting across enterprise data infrastructure. • Ensure adherence to regulatory and compliance standards including GDPR, CCPA, SOC 2, SOX, and other industry frameworks. • Mentor engineering teams and provide technical leadership for secure data architecture design. • Evaluate and recommend enterprise security tools such as DSPM, DLP, and SIEM platforms. Must Haves • 10–15 years of overall experience in cybersecurity, cloud security, or enterprise data platform architecture. • 8+ years of experience in information security architecture. • 4+ years of experience designing security for modern data platforms, including: • Data lakes / lake house architectures, Data warehouses, Streaming platforms • Strong expertise securing platforms such as: Snowflake, Databricks, Microsoft Fabric, Kafka / Spark streaming systems • Strong experience implementing cloud data security across AWS, Azure, and GCP (multi-cloud). • Deep expertise in IAM and Zero-Trust security models, including: RBAC, ABAC • Least-privilege access control • Hands-on experience implementing: Data encryption (at rest and in transit), Data masking and tokenization, Secrets management solutions • Experience implementing security monitoring, SIEM integration, and incident detection frameworks. • Strong experience with regulatory compliance frameworks such as: GDPR, CCPA, SOC 2, SOX • Strong scripting or automation skills using Python, SQL, Bash, or similar tools. • Strong communication skills with the ability to translate technical security risks into business impact. Nice to Have • Experience implementing Infrastructure-as-Code security practices using Terraform or Pulumi. • Experience integrating DevSecOps security practices into CI/CD pipelines. • Experience with data governance platforms such as: • Collibra • Alation • Apache Atlas • Experience working in regulated industries such as Financial Services or Telecommunications. • Familiarity with privacy-enhancing technologies (PETs) including: • Differential privacy • Federated learning Certifications: (At-least one is mandatory) • CISSP • CCSP • AWS Security Specialty • Google Professional Cloud Security Engineer