Senior Data Security Engineer
Location – Fully Remote (from within the UK)
Salary – £105-115k + Bonus + Benefits
Newly created role for a highly technical, hands-on Senior Data Security Engineer to join a major UK consumer brand undergoing a significant data transformation.
Reporting into the Head of Security Engineering, you’ll be working alongside the Data Engineering, Analytics and Product teams, acting as the security SME embedded within the data function - responsible for ensuring that security is at the heart of how data platforms, pipelines and analytics solutions are designed, built and operated. The data this team manages is sensitive and high-value: customer details, colleague data and company information - so the stakes are real.
For this role, they need someone who is a genuine Engineer first who wants to build securely in AWS. You don't need a data science background - but you do need to deeply understand how data engineers and scientists think, and know how to influence their design decisions in a way that enables fast delivery without compromising security.
Key Responsibilities:
* Act as the security SME for Data Engineering and Analytics teams, embedded across the full lifecycle of data products and platforms.
* Design and implement secure data vault architectures - defining how sensitive data is structured, stored, encrypted and accessed.
* Conduct threat modelling, architecture reviews and risk assessments across data platforms, warehouses and pipelines.
* Implement and maintain controls for encryption, key management, access control and data retention across AWS.
* Review infrastructure-as-code and platform configurations to identify and remediate security risks.
Key Requirements:
* Strong experience securing cloud-native data platforms in AWS environments, including services such as IAM, KMS, GuardDuty and Macie.
* Experience designing and securing data lakes, data warehouses and data vault architectures - familiarity with platforms such as Snowflake, Databricks or Redshift is a plus.
* Experience with Infrastructure-as-Code (Terraform / OpenTofu) and scripting in Python or Bash.
* Understanding of data governance, GDPR and data privacy requirements.
* Ability to influence technical and non-technical stakeholders - championing security as an enabler, not a blocker.