Data Security Architect - Under Armour Baltimore, MD, USA Bookmark Share Print 1718 0 1

Listing Description

ABOUT UA

Under Armour has one mission: to make you better. We have a commitment to innovation that lies at the heart of everything we do, not just for our athletes but also for our teammates. As a global organization, our teams around the world push boundaries and think beyond what is expected. Together our teammates are unified by our values and are grounded in our vision to inspire you with performance solutions you never knew you needed but can’t imagine living without.

POSITION SUMMARY

The Lead Database Security Architect is responsible for developing and implementing  proper architecture and engineering safeguards around our consumer data. The architect is expected to have a deep knowledge of a broad range of information and physical security controls to protect data stores on-premises and SaaS based data lake solutions (potentially including the data, the database applications or stored functions, the database systems, the database servers, and the associated network links) against compromises of their Confidentiality, Integrity, and Availability. The architect works with Enterprise System Owners, Application development teams, Data Analytics Teams, Media/advertising Teams, and the Data Privacy stakeholders to build security into all current and new initiatives, features, and business plans, related to Identity, Dashboarding, Personalization, Data Analytics and Customer Loyalty programs.

ESSENTIAL DUTIES & RESPONSIBILITIES

·        Develop and apply security & privacy best practices into all projects that collect, store, and disseminate consumer data.

·        Closely work along with Architects from our Data Visualization, Data Analytics, Data Storage, and our Global Privacy Teams to integrate security best practices creatively and seamlessly into our Data collecting, Data storing and Data dissemination platforms.

·        Work with Application owners and Privacy Teams to develop and deploy industry best practices for management Authentication and Authorization to consumer data.

·        Architect and Engineer data protection mechanisms for data at rest and data in transit.

·        Deploy security best practices for interface integrations between data origin, data lake, data consumers as well as supporting middleware.  

·        Work with Global Security Team to Audit User permissions, monitor and mitigate risks to the data store.

·        Ensure secure configuration of container-based architectures and implementations such as Kubernetes, Docker, etc.

·        Foster strong relationships with peers in internal organizations (engineering, product, privacy, legal, media), as well as external partners & vendors.

·        Able to work with developers & engineering leaders in a productive manner, while communicating security issues effectively and working to ensure they get fixed.

·        Operates effectively in an agile, dynamic, fast paced environment.

·        Solid understanding of both cloud and database security fundamentals.  Understands how to effectively safeguard data in a cloud environment in both transit and at rest.

QUALIFICATIONS (KNOWLEDGE, SKILLS & ABILITES)

·        Expert knowledge of a broad range of information security controls to protect on-premises and SaaS based data storage.

·        Experience with container-based architectures and implementations such as Kubernetes, Docker, etc.

·        Proficient with security controls and countermeasures including practical experience with identity management, cyber-security, and IT processes / solutions

EDUCATION AND/OR EXPERIENCE:

·        Bachelor’s degree in computing related discipline plus relevant work experience or relevant work experience

·        5-8 years of cyber security experience working with databases and in cloud-based data hosting environments. 

·        Experience with AWS as well as Kubernetes and Docker preferred.  

OTHER REQUIREMENTS:

·        Travel: < 10% of the year

·        Licenses/Certifications:  CISSP, MCSE/OCP, AWS, or similar is favorable.  Familiar with GDPR, CCPA

RELOCATION:

·        No relocation provided