Security Architect
Location: Glendale, CA
Employment Type: Contract
Job ID: 140869
Date Added: 09/26/2025
Location: Glendale, CA – Onsite 4 days a week
The Company
Headquartered in Los Angeles, this leader in the Entertainment & Media space is focused on delivering world-class stories and experiences to its global audience. To offer the best entertainment experiences, their technology teams focus on continued innovation and utilization of cutting edge technology.
Platform / Stack
You will work with technologies that include Snowflake, Snowflake RBAC, AI/ML Pipelines, SQL, Python, and IAM platforms.
Compensation Expectation: $80 – 100/hr
What You'll Do As a Sr Data Security Engineer:
- Design, implement, and manage Snowflake security controls, including RBAC, data masking, row/column-level security, and object tagging for access governance. Define and enforce least-privilege access models aligned with business requirements, compliance needs, and governance policies.
- Advise on Snowflake configuration best practices (network policies, encryption, failover, account/warehouse management, access patterns) to protect sensitive and regulated data.
- Partner with engineering teams to secure AI/ML workloads, vector databases, embeddings, and Cortex AI features within Snowflake.
- Liaise with the Studio’s Security team to ensure the platform meets enterprise-wide security standards and audit requirements.
- Analyze assessment findings, document risks, and collaborate with vendors on mitigation plans and timelines.
Qualifications:
You could be a great fit if you have:
- Bachelor’s degree in Computer Science, Information Security, Data Engineering, or related field (or equivalent experience).
- 5+ years of experience in information security, with at least 2 years working directly with Snowflake.
- Strong understanding of Snowflake RBAC, masking policies, external tokens, object tagging, data classification, and access governance.
- Experience securing AI/ML pipelines, vector databases, embeddings, or Snowflake Cortex features.
- Familiarity with IAM platforms (Okta, Azure AD, Ping, etc.), SSO, MFA, and SCIM integration.
- Proficiency in SQL, Python (or another major programming language), and automation for security controls.
- Familiarity with data governance frameworks, privacy regulations, and compliance requirements.
- Experience with cloud platforms (AWS, GCP, Azure) and securing data warehouses in multi-cloud environments.
- Strong written and verbal communication, with the ability to explain complex security concepts to technical and non-technical stakeholders.
- Preferred Experience:
- Certifications such as SnowPro Advanced: Data Protection and Security, CISSP, CISM, or CCSK.
- Experience with Immuta, SecuPi, or other data access governance tools.
- Knowledge of data lineage, cataloging, and classification tools (e.g., Alation, BigID).
- Experience in large-scale enterprise or regulated industries (media, finance, healthcare, etc.).
- Familiarity with agile/scrum methodologies and collaborative ways of working.
This client requires that a background check be completed. A background check is required to protect our company/client and its stakeholders by ensuring that we hire individuals with a trustworthy history, which helps maintain a safe and secure workplace. This proactive measure minimizes potential risks and promotes a culture of integrity within the organization.
Benefits Offered:
Employer provides access to:
- 3 levels of medical insurance for you and your family
- Dental insurance for you and your family
- 401k
- Overtime
- California has the following sick leave policy: accrue 1 hour for every 30 hours worked up to 48 hours. If you are based in a different state, please inquire about that state’s sick leave policy.