Data Security Architect

About The Position

Requirements

• 13–15 years of experience in data security, information protection, security architecture, or related roles
• Deep expertise in data discovery, classification, and access governance
• Strong understanding of cloud data platforms (AWS, Azure, GCP) and SaaS ecosystems
• Hands-on experience with DSPM, DLP, encryption, or data governance tools
• Solid understanding of AI/ML data pipelines and AI risk management
• Experience implementing IP protection techniques , including watermarking or tagging
• Strong knowledge of regulatory frameworks (GDPR, SOX, privacy, IP protection)
• Ability to translate complex technical risks into business-level insights

Nice To Haves

• Experience working with DSPM platforms (e.g., Cyera, Wiz DSPM, BigID)
• Familiarity with secure AI adoption frameworks
• Background in financial services or regulated industries
• Architecture certifications (e.g., CISSP, CCSP, cloud security certs)

Responsibilities

• Design and implement enterprise-wide mechanisms to discover where data resides across on-premises, cloud, SaaS, data lakes, and third-party environments
• Establish and maintain an authoritative data inventory covering structured and unstructured data
• Define and enforce standards to identify and classify data types , including confidential, regulated, proprietary, and intellectual property data
• Ensure classification scales across diverse data sources and platforms
• Identify and document data sources, data flows, and data lineage across systems
• Assess risk associated with data movement, duplication, and exposure
• Assess and govern how data is consumed by AI agents, ML models, and analytics platforms
• Evaluate risks associated with training data, inference data, prompts, and outputs
• Define controls to prevent unauthorized use of sensitive or IP data in AI workflows
• Evaluate and implement IP protection mechanisms , including data watermarking, tagging, and fingerprinting
• Ensure safeguards are in place to prevent data exfiltration, misuse, or IP leakage
• Define data protection architecture aligned with least privilege, zero trust, and defense-in-depth principles
• Partner with IAM, cloud security, and application teams to enforce access controls
• Drive integration with DSPM, DLP, encryption, and monitoring solutions
• Translate regulatory, legal, and contractual requirements into actionable data protection controls
• Support audits, risk assessments, and incident response with defensible data intelligence
• Establish metrics and reporting for data risk posture
• Serve as a trusted advisor to engineering, data, legal, privacy, and AI teams
• Lead architectural reviews and influence platform design decisions
• Mentor junior architects and security engineers

Benefits

• Health & Wellness: Health care coverage designed for the mind and body.
• Flexible Downtime: Generous time off helps keep you energized for your time on.
• Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills.
• Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs.
• Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families.
• Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference.