Overview
The Data Ring-Fencing & Privacy Engineer will play a pivotal role within the Enterprise Security Governance, Risk, and Compliance (GRC) team of a global cybersecurity organization. This position is focused on the technical implementation of the organization's global privacy strategy by designing and enforcing protective measures for sensitive data, ensuring compliance with international privacy regulations. The role requires collaboration with various teams to integrate privacy by design into the customer experience and uphold stringent data protection protocols.
Responsibilities
- Lead the creation and rollout of a comprehensive Data Ring-Fencing control framework.
- Define and enforce logical and physical separation protocols for high-sensitivity data environments.
- Establish protocols for 'Data Clean Rooms' and secure sharing pathways.
- Oversee the integration of micro-segmentation, Identity & Access Management (IAM), and granular access controls.
- Collaborate with DevOps and Engineering teams to embed automated privacy controls into system architecture.
- Implement technical safeguards such as salting, hashing, tokenization, and differential privacy.
- Establish and chair a Ring-Fencing Governance Board to monitor control adherence.
- Develop role-specific training for developers and data scientists on data handling standards.
Requirements
- Bachelor’s degree in Computer Science, Software Engineering, Mathematics, or a related technical field.
- 3+ years of experience in Privacy Engineering, Data Security, or Cloud Infrastructure Security.
- Familiarity with GDPR, CCPA, and data residency/sovereignty regulations.
- Experience with cybersecurity technologies and privacy-preserving methods is preferred.
- Knowledge of Cloud Service Providers (AWS/Azure/GCP) and their identity/segmentation tools.
- Understanding of Zero Trust Architecture (ZTA) and Data Loss Prevention (DLP) technologies is advantageous.
- Exceptional written communication skills for articulating complex privacy engineering concepts.