Principal of Access and Data Security SME

About The Position

Requirements

• Deep expertise in data security domains including encryption, tokenization, masking, and DLP.
• Experience with data classification frameworks and data lifecycle management.
• Strong understanding of data architectures across cloud, on-prem, and hybrid environments.
• Ability to translate data risk into business impact and regulatory implications.
• Deep expertise in IAM, PAM, and access governance models.
• Experience with identity systems, federation, and modern authentication (e.g., SSO, MFA, Zero Trust).
• Strong understanding of least privilege, role-based and attribute-based access control models.
• Ability to assess and communicate access-related risks at scale.
• 15+ years of IT experience with 8+ years in Information Security.
• Experience operating in a Three Lines of Defense model and/or regulated environment (financial services preferred).
• Ability to translate technical findings into business risk and executive-level insights.
• Experience in fintech or highly regulated industries.
• Familiarity with regulatory expectations for data protection and access control.
• Background in risk management, audit, or control validation.

Responsibilities

• Provide independent challenge and oversight of data protection practices across enterprise environments.
• Define and maintain policies, standards, and controls for data classification, encryption, retention, and handling.
• Challenge control validation and effectiveness testing of data security controls, including DLP and encryption.
• Assess and challenge data access, data sharing, and data lifecycle decisions.
• Deliver risk-based reporting on data exposure, control gaps, and trends.
• Provide oversight of data security tooling to ensure coverage, configuration, and data integrity.
• Provide independent challenge and oversight of Identity and Access Management (IAM) and Privileged Access Management (PAM) programs.
• Define and maintain policies, standards, and controls for authentication, authorization, and access governance.
• Challenge control validation of provisioning, deprovisioning, access reviews, and segregation of duties (SoD).
• Assess and challenge access decisions, entitlements, and privilege escalation risks.
• Deliver reporting on access risks, excessive privileges, and control weaknesses.
• Provide oversight of IAM/PAM tooling to ensure effectiveness and integrity.

Benefits

• Healthcare Coverage – Competitive medical (PPO/HDHP), dental, and vision plans as well as company contributions to your Health Savings Account (HSA) or pre-tax savings through flexible spending accounts (FSA) for commuting, health & dependent care expenses.
• 401(k) Retirement Plan – Featuring a 100% Company Safe Harbor Match on your first 6% deferral immediately upon eligibility.
• Paid Time Off – Flexible Time Off for Exempt (salaried) employees, as well as generous PTO for Non-Exempt (hourly) employees, plus 11 paid company holidays and a paid volunteer day.
• 12 weeks of Paid Parental Leave
• Maven Family Planning – provides support through your Parenting journey including egg freezing, fertility, adoption, surrogacy, pregnancy, postpartum, early pediatrics, and returning to work.