Staff Security Engineer, Data Protection

View full description

Requirements:

• Experienced in managing confidentiality, integrity and availability of data within cloud environments, both manually and through automation
• Have an understanding of industry best practices and tooling, including their limitations
• Proficient in risk-based decision making as it applies to data classification
• Have worked with CUI data and are familiar with CMMC 2.0 / NIST 800-171 controls
• Able to develop sensible data retention policies
• Strong communication skills and ability to work across different groups to build consensus on scalable data design patterns

Responsibilities:

• Work cross-functionally to ensure security and privacy of SandboxAQ and customer data
• Develop strategies and automation around data classification and monitoring
• Work within AWS and GCP environments making sure our systems are configured correctly and architected following best security practices
• Assist product teams in design of multi-tenant SaaS products
• Act as the steward of CUI data within our organization
• Automate vulnerability detection, data loss prevention (DLP), and privacy incident response across cloud platforms
• Collaborate with the development, DevOps, and InfoSec team to integrate privacy solutions into CI/CD pipelines
• Document privacy architectures, data flows, and technical implementations