Lead Security Architect – Cloud Data & AI Platforms
Carpenter Technology Corporation · Philadelphia, PA · 1 wk ago
Information TechnologyFull-time
About the role
The Lead Security Architect will lead the security strategy and implementation for Carpenter Technology's next-generation cloud data & AI platforms, ensuring security is embedded by design while fostering a culture of innovation.
Responsibilities
- Cloud Data & AI Platform Security Architecture: Own the security architecture and roadmap for Carpenter’s cloud-based data analytics and AI platform. Develop and maintain secure design patterns covering data ingestion, storage, processing, and AI model deployment.
- Identity & Access Management (IAM): Implement robust identity and access controls across the platform, leveraging enterprise identity services like Azure AD to enforce single sign-on, multi-factor authentication, and conditional access policies.
- Data Protection & Privacy: Safeguard data in transit and at rest through encryption and strong key management. Ensure sensitive data is encrypted end-to-end with appropriate customer-managed keys and meets required cryptographic standards.
- Network & Infrastructure Security: Design the network security architecture, implement secure network segmentation and firewall policies, and protect hybrid connectivity via encrypted channels and strict firewall rules.
- Governance, Risk & Compliance: Ensure compliance with internal policies and external regulations, implementing governance controls to meet standards such as ITAR, CMMC/NIST 800-171, and SOC/ISO 27001 as applicable.
- Data Governance & Monitoring: Integrate data governance tools with the platform, establish continuous monitoring and auditing, and maintain detailed audit trails for forensics and compliance verification.
- AI Security & Trust: Develop security and trust frameworks for AI services, ensure AI/ML solutions respect data access controls, and implement guardrails around AI model usage.
- Incident Preparedness & Response: Institute robust incident detection and response processes, work with the Cybersecurity Operations Center to tailor alerting, and lead or support incident handling for any security events.
- Strategic Leadership & Collaboration: Serve as the bridge between cybersecurity and data/AI teams, champion a culture of security-by-design, and provide thought leadership on emerging threats and cloud capabilities.
Requirements
- Education & Certifications: Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience). Master’s degree or MBA a plus. Professional certifications such as CISSP, CISM, CCSP, or relevant cloud security certifications (e.g., Azure Security Engineer, AWS Security) strongly preferred.
- Relevant Work Experience: Extensive Security & Architecture Experience (10+ years), including 5+ years of leadership in securing cloud data platforms or enterprise analytics solutions.
- Technical Proficiency: Strong expertise in cloud security technologies and best practices, hands-on experience with public cloud services (e.g., Azure, AWS, or GCP), and familiarity with modern analytics platforms (e.g., Azure Synapse, Microsoft Fabric, Databricks).
- Regulated Data & Compliance: Experience securing sensitive and regulated data in a cloud environment, knowledge of regulatory frameworks (such as ITAR, HIPAA, GDPR, or similar), and ability to translate regulatory and risk requirements into actionable technical solutions.
Qualifications
- Proven track record of successfully delivering security for large-scale data or AI platforms in a modern cloud environment.
- Strong communication and collaboration skills, able to work effectively with both the enterprise cybersecurity team and the data/AI platform team.
- Ability to translate complex security concepts into practical solutions and drive adoption within the organization.
Skills
- Hands-on experience with cloud security technologies and best practices.
- Expertise in cloud platforms and tools, particularly Azure and AWS.
- Strong understanding of data protection, encryption, and key management.
- Experience with identity and access management, network security, and data governance tools.
- Knowledge of regulatory frameworks and experience implementing controls to comply with them.
Benefits
Carpenter Technology Company offers a competitive salary and a comprehensive benefits package including life, medical, dental, vision, flexible spending accounts, disability coverage, 401k with company contributions, and many other options to employees.
Pay
Competitive salary based on experience and qualifications.
Schedule
Full-time position.