Government and Public Sector – AI & Data – Data Security Engineer – Senior Consultant
The Data Security Engineer position is designed for individuals with a solid foundation in cybersecurity standards and controls, with a particular emphasis on designing solutions that cater to the rigorous security demands of Government clients within a distributed data infrastructure. Utilizing a deep knowledge of National Institute of Standards and Technology (NIST) controls, you will be tasked with implementing technical solutions that not only comply with these controls but also facilitate coordination and consensus among our clients.
This role demands specialized experience in data security, particularly within a data mesh architecture, requiring the capability to delve into technical details as well as the unique ability to distill complex topics for executive communication.
Your key responsibilities
- Design and implement robust data security frameworks tailored for a data mesh ecosystem, ensuring secure data sharing and access across decentralized nodes.
- Develop and enforce comprehensive privacy policies and procedures in compliance with global data protection regulations (e.g., GDPR, CCPA) to safeguard sensitive information within the data mesh infrastructure.
- Create dynamic access control policies that adapt to the evolving needs of a distributed data environment, leveraging advanced technologies like AI for real-time decision-making.
- Lead the integration of security practices into the data lifecycle, from ingestion through to analytics and archiving, ensuring data integrity and confidentiality across all phases.
- Conduct regular security assessments and audits to identify vulnerabilities within the data mesh ecosystem, and develop mitigation strategies to address identified risks.
- Collaborate with cross-functional teams to foster a culture of security awareness, ensuring that data security and privacy principles are embedded in all data operations.
- Stay abreast of the latest cybersecurity trends, threats, and technologies to continually enhance the security posture of the data mesh ecosystem.
- Author and manage critical security artifacts, including SOPs, RMF deliverables, security plans, and contingency plans, ensuring they are adapted to the data mesh architecture.
Skills and attributes for success
- An in-depth knowledge of data mesh architecture and its core principles is highly desirable although not strictly required.
- Proven expertise in designing and managing security solutions within complex, distributed data environments.
- Thorough understanding of encryption protocols for data at rest and in transit, ensuring secure data communication and storage.
- Demonstrated ability to enhance security through robust audit and alerting mechanisms, supported by comprehensive server-side security policies.
- Proficiency in implementing and maintaining security architectures compliant with Zero Trust principles.
- Comprehensive knowledge of Federal Government security controls, assessment procedures in FISMA, and NIST SP 800-53, with a focus on applying these within a distributed data infrastructure.
- Demonstrable experience with cloud service providers like Azure, AWS, etc., and an understanding of their security features.
- Strong knowledge in implementing security best practices specifically for distributed architectures, ensuring secure, distributed data management and access.
- Proficiency in conducting risk assessments and developing mitigation plans, with a focus on identifying potential threats and vulnerabilities within a distributed data ecosystem.
- Demonstrated ability to integrate robust security measures into a distributed data infrastructure, safeguarding against unauthorized access.
- Experience with data privacy, classification, and access tools such as Immuta, Azure IAM, Azure data catalog, or Gigya.
To qualify for the role, you must have
- Eligibility to obtain and maintain a Secret Clearance.
- Bachelor’s or Master's degree in Computer Science, Information Security, or a related field.
- 4+ years of experience in a security engineering role, with a focus on data security, privacy, and access management.
- DoD or government experience preferred
- Professional certifications, such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CCSP (Certified Cloud Security Professional) or equivalent certifications strongly preferred.
- Familiarity with Federal Information Processing Standards and DoD Risk Management Framework
- Must be comfortable working in-person as needed in the greater Washington, DC area
What we offer
We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $105,800 to $174,800. The salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $127,100 to $198,600. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
- Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
- Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
- Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
- Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.
If you can demonstrate that you meet the criteria above, please contact us as soon as possible.
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.