Senior Data Security Architect

State StreetQuincy, MA
Hybrid

About The Position

We are looking for a Senior Data Security Architect. You will be responsible for designing, reviewing, and governing security architectures that protect the firm's data assets across cloud, on-premises, SaaS, analytics, and hybrid environments. You will work closely with data engineering, cloud, infrastructure, cybersecurity, and business teams to ensure data protection controls are embedded throughout the data lifecycle and aligned with enterprise security standards, regulatory requirements, and risk management objectives. The team you will be joining is part of the Security Architecture organization, a function that is critical to protecting the firm's most valuable asset—its data. As organizations increasingly leverage cloud computing, enterprise data lakes, analytics platforms, data warehouses, and third-party services, this role is responsible for ensuring sensitive information remains secure, resilient, compliant, and appropriately governed throughout its lifecycle.

Requirements

  • Deep expertise in data security architectures, data protection controls, and enterprise information security principles.
  • Strong understanding of cloud-native data platforms, enterprise data lakes, data warehouses, analytics platforms, and large-scale data ecosystems.
  • Experience with encryption, tokenization, data masking, privacy controls, secure data-sharing architectures, and enterprise key management solutions.
  • Strong knowledge of cryptographic technologies including KMS, HSMs, PKI, secrets management, certificate management, and enterprise encryption strategies.
  • Experience securing structured and unstructured data across cloud, SaaS, and hybrid environments.
  • Strong analytical, problem-solving, and risk assessment skills with the ability to balance security, compliance, and business needs.
  • 13 years or more of experience in data security, security architecture, cloud security, information protection, cryptography, or related technology disciplines with at least 8 years of hands-on cybersecurity experience preferred.
  • Demonstrated experience designing and implementing enterprise-scale data protection and security architectures in complex global environments.
  • Deep expertise in data classification, data protection, encryption, tokenization, masking, privacy controls, data governance, and secure data lifecycle management.
  • Strong understanding of cloud data platforms and services across AWS, Microsoft Azure, and Google Cloud Platform.
  • Experience securing enterprise data lakes, data warehouses, analytics environments, and large-scale data ecosystems.
  • Deep expertise in cryptographic key management systems, Hardware Security Modules (HSMs), enterprise PKI, secrets management platforms, and encryption lifecycle management.
  • Experience conducting architecture reviews, threat modeling, risk assessments, and security design evaluations for data-centric platforms and services.
  • Familiarity with privacy regulations, data residency requirements, and security frameworks applicable to highly regulated environments.
  • Experience supporting enterprise data modernization, cloud transformation, data governance, and information protection initiatives.
  • Ability to work effectively with data engineering, analytics, cloud, cybersecurity, and business teams in a global environment.

Nice To Haves

  • Professional certifications such as CISSP, CCSP, CDPSE, CIPP, SABSA, TOGAF, AWS Security Specialty, Azure Security Engineer, or equivalent certifications are highly desirable.
  • Experience within financial services or other highly regulated industries is preferred.

Responsibilities

  • Design and maintain enterprise data security architectures, standards, and reference patterns across cloud, SaaS, on-premises, analytics, and hybrid environments.
  • Define security requirements and architecture controls for data classification, encryption, tokenization, masking, privacy, retention, secure data sharing, and cryptographic key management.
  • Conduct security architecture reviews for data lakes, data warehouses, analytics platforms, cloud data services, enterprise applications, and large-scale data ecosystems.
  • Partner with engineering, cloud, infrastructure, and cybersecurity teams to embed security controls into enterprise data platforms and services.
  • Define cryptographic architecture requirements including key management systems (KMS), Hardware Security Modules (HSMs), secrets management platforms, certificate lifecycle management, and encryption standards.
  • Assess data security risks and develop mitigation strategies aligned with enterprise security policies and regulatory requirements.
  • Provide subject matter expertise on data protection technologies, encryption, key management, cryptographic controls, secure data architectures, and enterprise data governance.
  • Evaluate emerging data security technologies, threats, and industry trends to support future-state architecture strategies.

Benefits

  • our retirement savings plan (401K) with company match
  • insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
  • paid-time off including vacation, sick leave, short term disability, and family care responsibilities
  • access to our Employee Assistance Program
  • incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans)
  • eligibility for certain tax advantaged savings plans
  • inclusive development opportunities
  • flexible work-life support
  • paid volunteer days
  • vibrant employee networks
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service