Databricks Security Architect

POSITION SUMMARY: 
The IT Cloud Security Architect, Data Science has significant responsibilities related to securing Client’s Data Science environment, Databricks. Their primary focus to serve as the lead security resource on Client’s Databricks deployment project to ensure all security risk is properly addressed. The architect will coordinate with other IT Risk Management leads to deploy and integrate their domain specific tooling, will take primary ownership of security and compliance workstreams, and will champion security-minded 
approaches in Data Science functional discussions with application technical and functional teams.

REQUIREMENTS FOR CONSIDERATION:
·        Proven experience securing a Databricks data science platform with a GCP Big Query backend.
·        Strong Experience in applying industry standard cyber security frameworks and vendor blueprints to business problems
·        5+ years development experience with solid programming abilities including Powershell, Python, YAML, WebService API’s.
·        5+ years of progressive career experience focusing on GCP Cloud Security and Application Security Architecture
·        Bachelor’s degree in Computer Science, a related field, or applicable work experience
·        Excellent technical and non-technical documentation skills including security standards, policies, guidelines, and procedures, change documentation, enterprise end-user communications, technical knowledge articles, infrastructure diagrams, and process charts.
·        Deeply articulate in security risks associated with SaaS services, their integration with legacy on-premise systems, and commonly associated security solutions.
·        Infosec certifications such as ISC2 (CISSP or CCSP) or ISACA (i.e.: CRISC, CISA, CISM, etc)
·        Technical infosec certifications such as Google Certified Security Engineer, Google Certified Professional Cloud Architect
·        Experience performing enterprise security risk assessments, selecting appropriate technical controls, liaising with business partners through the project lifecycle, and complete risk-acceptance handling of residual risks.
·        Proven ability to design, document, and implement reusable security patterns.
·        Experience in designing data protection and privacy-centric security controls in enterprise data-warehouses including ingestion, ETL, storage, analytical consumption, and reporting.
·        Experience with integrating code scanning for vulnerabilities into CI/CD pipelines for Cloud Native deployments
·        Experience with AD group structuring.
·        Strong leadership skills in accountability and customer focus
·        Proactive and able to catch issues before failures