JOBSEARCHER

Data Security Architect

ARCHIVED

We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.

The Data Security Architect is responsible for defining the enterprise architecture, control patterns, and design standards for protecting sensitive data across IDEXX’s platforms, including Snowflake, Databricks, M365, Box, and cloud applications (AWS-first).This role ensures that data security capabilities—such as DSPM, DLP, and data platform controls—are designed correctly, integrated across systems, and scalable, enabling consistent protection of sensitive data across the enterprise.This is a design and architecture leadership role, focused on the “how” of data protection, not day-to-day program execution or tool operations.In this role, you will be responsible for…Data Security Architecture & DesignDefine the enterprise data security architecture, including:Data discovery and classification (DSPM integration)DLP/CASB control strategy (M365, Box, endpoint)Data platform security controls (Snowflake, Databricks)Application/API data protection patterns (cloud-first)Establish standard control patterns, including:Data classification and tagging modelsEncryption, tokenization, and masking strategiesData access control models (RBAC, ABAC, RLS)Data movement and sharing controlsEnsure consistency and scalability of data protection across SaaS, cloud, and application environmentsPlatform Integration & Control AlignmentDesign and drive integration across:Snowflake and Alation (data catalog and ownership mapping)Entra ID (identity-driven access controls and policy enforcement)M365 and Box (data loss prevention and collaboration controls)Cloud environments (AWS, Azure, GCP)Ensure alignment between:DSPM findingsDLP policiesData platform controlsTranslate data risk insights into technical control implementation requirementsReference Architecture & Engineering EnablementDevelop and maintain a Data Security Reference ArchitectureDefine secure design patterns and implementation guidance for:Data engineering teamsApplication development teamsCloud platform teamsEnable engineering teams to embed data protection into systems and workflows, rather than relying solely on downstream toolingCollaboration with Program & Engineering TeamsPartner with:Data Security Program Lead (execution and governance)Data Security Engineering Lead (implementation delivery)Cyber Defense / SOC teams (operational integration)Provide architectural direction and design input while ensuring:Execution teams can implement effectivelyControls remain aligned to risk prioritiesStandards, Governance & Continuous ImprovementDefine and evolve data protection standards aligned to:Data Management Policy (classification, handling, retention)Regulatory requirements (HIPAA, GDPR, etc.)Evaluate emerging capabilities and tools:DSPM platformsDLP/CASB solutionsData platform-native controlsContinuously improve architecture based on:New data risksPlatform evolution (Snowflake, AWS, etc.)Feedback from operations and engineeringWhat You Will Need To Succeed...7-10+ years experience in: Data security, cloud security, or security architectureLocation: We are looking for someone driving distance to our HQ in Westbrook, Maine for a flexible hybrid requirement of 8 days per month. Alternatively, we are open to those in NH or MA that can travel in less frequently.Strong experience designing security for:Cloud-native data platforms (Snowflake, Databricks)SaaS and collaboration environments (M365, Box)Enterprise identity systems (Entra ID)Proven ability (via outcomes) to design and scale:Data classification and tagging modelsData protection controls (DLP, masking, encryption)Access control models (RBAC, ABAC)Experience working across:Data engineeringApplication engineeringCloud platform teamsTechnical ExpertiseDeep understanding of:Data protection architecture and lifecycle managementData platforms (Snowflake strongly preferred)Cloud environments (AWS preferred; Azure/GCP familiarity)Working familiarity with:DSPM tools (e.g., Cyera, BigID, etc.)CASB/DLP platforms (M365, endpoint, etc.)Data catalog and governance tools (e.g., Alation)Knowledge of:Encryption, tokenization, and data masking techniquesData access governance models and patternsUnderstanding of regulatory frameworks relevant to IDEXX (GDPR, SOC2, PCI DSS)Leadership & Professional SkillsStrong architectural thinking and system design capabilityPredilection towards action to achieve outcomes and refine designAbility to translate business data risk into technical architectureExcellent collaboration skills across engineering and security domainsAbility to communicate via architectural diagrams, whitepapers, presentationsStrong communication skills to:Influence technical and non-technical stakeholdersAlign teams on architecture and standardsIt would be a plus if you had any of these...Experience implementing enterprise data security or DSPM programsBackground working with data engineering or analytics teamsExperience designing controls in Snowflake or similar platformsCertifications (AWS Certified Solutions Architect, CISSP, CCSP, etc.)What You Can Expect From Us Base annual salary target: $120000 - $150000 (yes, we do have flexibility if needed) Opportunity for annual cash bonus Health / Dental / Vision Benefits Day-One 5% matching 401k Additional benefits including but not limited to financial support, pet insurance, mental health resources, volunteer paid days off, employee stock program, foundation donation matching, and much more!Why IDEXX?We’re proud of the work we do, because our work matters. An innovation leader in every industry we serve, we follow our Purpose and Guiding Principles to help pet owners worldwide keep their companion animals healthy and happy, to ensure safe drinking water for billions, and to help farmers protect livestock and poultry from diseases. We have customers in over 175 countries and a global workforce of over 10,000 talented people.So, what does that mean for you? We enrich the livelihoods of our employees with a positive and respectful work culture that embraces challenges and encourages learning and discovery.   At IDEXX, you will be supported by competitive compensation, incentives, and benefits while enjoying purposeful work that drives improvement.Let’s pursue what matters together.IDEXX values a diverse workforce and workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply.IDEXX is an equal opportunity employer. Applicants will not be discriminated against because of race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, ancestry, marital status, veteran status, medical condition, or any protected category prohibited by local, state, or federal laws.