Senior Data Security Architect

Glocomms is partnered with a major mutual life insurance company, seeking a highly experienced and strategic Senior Data Security Architect to lead the design and implementation of robust data protection frameworks across our enterprise. This role is pivotal in shaping the client's data security posture, ensuring compliance with global regulations, and safeguarding sensitive information throughout its lifecycle. The ideal candidate will possess deep technical expertise in data security technologies, a strong understanding of AI/ML security risks, and the ability to influence executive stakeholders and cross-functional teams.

Core Responsibilities:

• Design and implement data protection strategies aligned with business objectives and regulatory requirements.
• Develop and maintain secure data lifecycle architectures, including data classification, retention, and destruction policies.
• Lead initiatives in data governance, privacy, and audit readiness, ensuring compliance with HIPAA, CCPA, and other jurisdictional regulations.
• Create and maintain reference architectures and prescriptive blueprints for secure data environments.
• Provide executive-level reporting on data security posture, risks, and mitigation strategies.
• Collaborate with engineering, data science, and compliance teams to secure cloud data services (e.g., AWS, Databricks, Snowflake).
• Implement and manage encryption (in transit, at rest, in use), tokenization, data masking, and anonymization techniques.
• Oversee Data Loss Prevention (DLP) programs and tools.
• Evaluate and integrate data governance platforms such as Collibra, Informatica, and Microsoft Purview.
• Lead security efforts for AI/ML pipelines, including agentic security, model governance, and protection against adversarial attacks, prompt injection, data leakage, and model inversion.
• Partner with vendors and internal stakeholders to influence technology roadmaps and ensure alignment with security best practices.

Qualifications:

Required:

• 8+ years of experience in data security architecture or related roles.
• Proven expertise in cryptography, data protection, and cloud security.
• Strong knowledge of AI/ML security, including GenAI systems, LLM pipelines, and emerging threats.
• Experience with secure data lakes, MLOps pipelines, and cloud-native architectures.
• Familiarity with compliance frameworks and legal considerations around data jurisdiction and privacy.
• Excellent communication skills with the ability to present complex topics to executive leadership.
• Demonstrated ability to lead cross-functional collaboration and manage vendor relationships.

Preferred Certifications:

• CISSP - Certified Information Systems Security Professional
• CISM - Certified Information Security Manager
• CCSP - Certified Cloud Security Professional
• CIPP/US - Certified Information Privacy Professional (US)
• GIAC Data Protection (GDAT)
• AWS Certified Security - Specialty

This is a hybrid role (3 days per week in office), with the potential to be based out of Manhattan, Stamford CT, Holmdel NJ, Bethlehem PA, or Pittsfield MA; the client is not able to sponsor now or in the future. If you're interested, please apply in directly!