Job ID: JOB_ID_9270
Job Summary:
Our client is seeking a highly skilled and strategic Data Security Principal Architect to join their Cybersecurity organization. This role is pivotal in defining and implementing robust data protection frameworks across the company’s digital landscape. The position is hybrid, requiring three days per week on-site at either their Allentown, PA (Lehigh Valley) or Providence, RI office. This architect will bridge traditional Microsoft Information Protection and compliance tools with modern AI-centric data security practices, focusing on encryption for LLM pipelines, secure vector stores, and legacy data remediation. Collaboration with Security Engineering, Data Governance, Cloud Ops, and AI/ML teams is essential to secure data throughout its lifecycle.
Key Responsibilities:
- Data Protection Strategy: Define and own the comprehensive data protection strategy for structured, semi-structured, and unstructured data, ensuring alignment with regulatory, legal, and business mandates (e.g., NERC, SOX, CCPA, GDPR).
- Azure Purview Implementation: Architect and deploy Azure Purview for data classification and insider risk management policies.
- AI Data Pipeline Security: Lead the secure implementation of AI Data Pipelines, including RAG (Retrieval-Augmented Generation) and Vector Databases. Explore the applicability of Fully Homomorphic Encryption (FHE) and Differential Privacy (DP) for AI/LLM pipelines.
- Legacy Data Management: Develop strategies for legacy data de-duplication, archiving, and migration. Evaluate long-term retention risks and optimize lifecycle policies.
- DLP Implementation: Implement and manage Data Loss Prevention (DLP) rules across email, endpoints, cloud storage, and collaboration platforms (e.g., Microsoft 365, SharePoint).
- Architectural Guidance: Provide architectural guidance to product teams and AI/ML engineers. Author security patterns, threat models, and playbooks.
- Tool Evaluation & Automation: Evaluate and integrate third-party tools for data discovery, monitoring, and tokenization. Drive automation around data classification and response processes.
- DSPM Strategy: Define the Data Security Posture Management (DSPM) strategy and architecture.
- Incident Protocol: Define the Data Incident Protocol and Playbook.
- General Duties: Perform other duties as assigned and comply with all company policies and standards.
Qualifications:
- Required Education: Bachelor’s Degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
- Required Experience: 10+ years in information security or data architecture roles.
- Preferred Qualifications: Previous experience with utilities or highly regulated industries. Working knowledge of structured data protection in data lakes or Azure Synapse. Experience contributing to LLM security or responsible AI design patterns. SANS/GIAC, CISSP, or Azure Security certification. Experience with legacy data cleanup initiatives (e.g., tape archive migration). Experience with DSPM platforms. Strong understanding of cryptographic primitives and modern data security standards (AES, SHA, TLS, etc.), including an understanding of proposed quantum-ready cryptography standards. Excellent communication skills and the ability to influence technical and executive stakeholders. Demonstrated ability to assess risk trade-offs between security, usability, and operational efficiency. Deep interest in AI safety, responsible data stewardship, and future-proofing sensitive workloads.
Special Requirements
Hybrid, Onsite 3 days/week in Allentown, PA or Providence, RI; W2
Compensation & Location
Salary: $100 – $130 per year (Estimated)
Location: Allentown, PA or Providence, RI, PA
Recruiter / Company – Contact Information
Email: raj@convextech.com
Recruiter Notice:
To remove this job posting, please send an email from
raj@convextech.com with the subject:
DELETE_JOB_ID_9270