Data Security Architect

IQVIA

Data Security Architect building the architecture and standards for data protection at IQVIA. Establishing a formal Data Security Architecture practice in a global life sciences company.

Posted 6/20/2026full-timeRemote • North Carolina, Pennsylvania • 🇺🇸 United StatesMid-LevelSenior💰 $112,200 - $312,700 per yearWebsite

Tech Stack

Tools & technologies

AWSAzureCloud

About the role

Key responsibilities & impact

Define and own IQVIA’s Data Security Architecture strategy, establishing a formal program from the ground up that is aligned to IQVIA’s hybrid, multi-cloud, and post-M&A data environment and the Data Office’s strategic platform direction.
Lead the evaluation, selection, and implementation of a Data Security Posture Management (DSPM) platform, encompassing sensitive data discovery, classification, exposure analysis, access risk assessment, and continuous posture monitoring across on-premises and cloud-hosted data environments.
Develop and maintain a comprehensive data security architecture covering data classification frameworks, data access governance, encryption standards, tokenization, masking, and data loss prevention controls across structured and unstructured data at scale.
Partner closely with the Data Office to align data security architecture with enterprise data governance and platform strategy, ensuring security controls are embedded in data lifecycle management across analytical, operational, and AI workloads.
Define security architecture standards and guardrails for IQVIA’s strategic data platforms, including cloud-native analytical environments (Snowflake, Databricks), data movement and transformation tooling, and operational database platforms, ensuring consistent security posture across a diverse and evolving estate.
Provide data security architecture input and oversight for platform migrations, legacy system decommissions, and M&A integration programs — assessing inherited data estates for sensitive data exposure, access control gaps, and regulatory risk, and defining remediation roadmaps aligned to integration timelines.
Define IQVIA’s data security approach for AI and LLM-integrated platforms, establishing policy and technical controls governing the safe use of AI capabilities embedded in or connected to data platforms, including controls around data inputs, model outputs, and prevention of regulated data exposure in AI workflows.
Architect data security controls for advanced analytics and AI/ML pipelines, including protection of training datasets, model pipeline integrity, RAG data source governance, and controls preventing unauthorized use of sensitive data in AI-connected systems.
Develop and govern IQVIA’s enterprise data classification taxonomy and policy framework, working with Legal, Privacy, Compliance, and business data owners to define classification tiers, handling requirements, and technical enforcement mechanisms across business units and regions.
Establish data access governance principles across IQVIA’s data platforms, including least-privilege access models, periodic entitlement reviews, and integration with IAM and PAM controls at the data tier.
Define encryption and key management architecture for data at rest and in transit across on-premises databases, cloud storage, data warehouses, and analytical environments, with particular attention to PHI and cross-border data transfer requirements.
Provide security architecture input to data platform vendor evaluations and contract negotiations, ensuring security requirements, data-use restrictions, telemetry controls, and audit rights are appropriately represented.
Support regulatory compliance requirements across GDPR, HIPAA, CCPA, GxP, and applicable regional data protection regimes, translating regulatory obligations into architectural controls and providing assurance evidence for audits and assessments.
Define metrics, KPIs, and reporting frameworks for data security posture, providing actionable visibility to CISO leadership and Data Office stakeholders on data risk, program coverage, and maturity progression.

Requirements

What you’ll need

6–10 years of progressive experience in Information Security, Data Security, Security Architecture, or related technical roles, with demonstrated ownership of data-centric security programs or initiatives.
Deep knowledge of data security architecture principles, including data classification, access governance, encryption, tokenization, masking, and data loss prevention across hybrid environments spanning on-premises data centers and multi-cloud platforms.
Hands-on experience with enterprise-scale cloud data platforms (such as Snowflake, Databricks, or equivalent), with the ability to design and assess security controls including governance, access policy, and data sharing frameworks.
Experience with cloud environments (Microsoft Azure and/or Amazon AWS), including securing data services across IaaS, PaaS, and cloud-native analytical platforms.
Experience evaluating or deploying DSPM, data governance, or data classification platforms such as Varonis, Securiti, Cyera, Microsoft Purview, BigID, or equivalent.
Working knowledge of IAM and access governance principles as applied to data platforms, including RBAC, ABAC, and entitlement management across analytical and operational environments.
Experience conducting security architecture reviews in complex, heterogeneous data environments, including post-M&A assessments, legacy platform migrations, or on-premises data center programs.
Strong understanding of regulatory frameworks governing sensitive data, including HIPAA/HITECH, GDPR, CCPA, and GxP, with the ability to translate regulatory requirements into architectural controls across a diverse platform estate.
Foundational to intermediate knowledge of AI and ML security considerations, including LLM application risks, model pipeline security, and the data protection implications of AI features embedded in or connected to enterprise data platforms.
Demonstrated ability to operate at the intersection of security and data platform teams, communicating architecture decisions to data engineers, platform architects, business data owners, and senior stakeholders.
Experience within regulated industries — life sciences, healthcare, or financial services — with direct exposure to clinical, patient-level, or pharmaceutical data security requirements is preferred.
Bachelor’s degree in Computer Science, Information Security, Data Management, or equivalent practical experience is preferred.
Relevant certifications such as CISSP, CISM, CDPSE, CCSP, AWS/Azure Security Specialty, or CIPP/E are preferred but not mandatory.
Working knowledge of data governance and security frameworks such as NIST Privacy Framework, DAMA-DMBOK, ISO 27001, or similar is an advantage.
Strong written and verbal communication skills, including experience producing architecture documentation, security standards, and executive-level reporting for senior leadership and governance forums.

Benefits

Comp & perks

🌐 Worldwide ❌ Jobs You've Hidden ⭐️ Saved Jobs ✅ Applied Jobs ✉️ Email Alerts 👤 Account IQVIA Website LinkedIn All Job Openings 10,000+ employees ⚕️ Healthcare Insurance 🧬 Biotechnology 🤖 Artificial Intelligence 💰 $1G Post-IPO Debt on 2023-05 Healthcare Insurance
Biotechnology
Artificial Intelligence IQVIA is a global leader in data analytics and technology solutions, dedicated to improving health outcomes. The company utilizes its Connected Intelligence platform to harness the power of advanced data analytics and artificial intelligence, facilitating innovation in healthcare. IQVIA focuses on various areas, including clinical research, technology, and consulting services to solve complex healthcare challenges and accelerate the delivery of new therapies to patients. Data Security Architect 🔥 1 hour ago 🌲 North Carolina, Pennsylvania – Remote 💵 $112.2k - $312.7k / year ⏰ Full Time 🟡 Mid-level 🟠 Senior 👮‍♂️ Cybersecurity / Security Engineer 🦅 H1B Visa Sponsor AWS Azure Cloud Apply Now Find Hiring Managers Customize resume + cover letter Report problem ☆ Save ☑️ Mark as applied ❌ Hide 📋 Description
Define and own IQVIA’s Data Security Architecture strategy, establishing a formal program from the ground up that is aligned to IQVIA’s hybrid, multi-cloud, and post-M&A data environment and the Data Office’s strategic platform direction.
Lead the evaluation, selection, and implementation of a Data Security Posture Management (DSPM) platform, encompassing sensitive data discovery, classification, exposure analysis, access risk assessment, and continuous posture monitoring across on-premises and cloud-hosted data environments.
Develop and maintain a comprehensive data security architecture covering data classification frameworks, data access governance, encryption standards, tokenization, masking, and data loss prevention controls across structured and unstructured data at scale.
Partner closely with the Data Office to align data security architecture with enterprise data governance and platform strategy, ensuring security controls are embedded in data lifecycle management across analytical, operational, and AI workloads.
Define security architecture standards and guardrails for IQVIA’s strategic data platforms, including cloud-native analytical environments (Snowflake, Databricks), data movement and transformation tooling, and operational database platforms, ensuring consistent security posture across a diverse and evolving estate.
Provide data security architecture input and oversight for platform migrations, legacy system decommissions, and M&A integration programs — assessing inherited data estates for sensitive data exposure, access control gaps, and regulatory risk, and defining remediation roadmaps aligned to integration timelines.
Define IQVIA’s data security approach for AI and LLM-integrated platforms, establishing policy and technical controls governing the safe use of AI capabilities embedded in or connected to data platforms, including controls around data inputs, model outputs, and prevention of regulated data exposure in AI workflows.
Architect data security controls for advanced analytics and AI/ML pipelines, including protection of training datasets, model pipeline integrity, RAG data source governance, and controls preventing unauthorized use of sensitive data in AI-connected systems.
Develop and govern IQVIA’s enterprise data classification taxonomy and policy framework, working with Legal, Privacy, Compliance, and business data owners to define classification tiers, handling requirements, and technical enforcement mechanisms across business units and regions.
Establish data access governance principles across IQVIA’s data platforms, including least-privilege access models, periodic entitlement reviews, and integration with IAM and PAM controls at the data tier.
Define encryption and key management architecture for data at rest and in transit across on-premises databases, cloud storage, data warehouses, and analytical environments, with particular attention to PHI and cross-border data transfer requirements.
Provide security architecture input to data platform vendor evaluations and contract negotiations, ensuring security requirements, data-use restrictions, telemetry controls, and audit rights are appropriately represented.
Support regulatory compliance requirements across GDPR, HIPAA, CCPA, GxP, and applicable regional data protection regimes, translating regulatory obligations into architectural controls and providing assurance evidence for audits and assessments.
Define metrics, KPIs, and reporting frameworks for data security posture, providing actionable visibility to CISO leadership and Data Office stakeholders on data risk, program coverage, and maturity progression. 🎯 Requirements
6–10 years of progressive experience in Information Security, Data Security, Security Architecture, or related technical roles, with demonstrated ownership of data-centric security programs or initiatives.
Deep knowledge of data security architecture principles, including data classification, access governance, encryption, tokenization, masking, and data loss prevention across hybrid environments spanning on-premises data centers and multi-cloud platforms.
Hands-on experience with enterprise-scale cloud data platforms (such as Snowflake, Databricks, or equivalent), with the ability to design and assess security controls including governance, access policy, and data sharing frameworks.
Experience with cloud environments (Microsoft Azure and/or Amazon AWS), including securing data services across IaaS, PaaS, and cloud-native analytical platforms.
Experience evaluating or deploying DSPM, data governance, or data classification platforms such as Varonis, Securiti, Cyera, Microsoft Purview, BigID, or equivalent.
Working knowledge of IAM and access governance principles as applied to data platforms, including RBAC, ABAC, and entitlement management across analytical and operational environments.
Experience conducting security architecture reviews in complex, heterogeneous data environments, including post-M&A assessments, legacy platform migrations, or on-premises data center programs.
Strong understanding of regulatory frameworks governing sensitive data, including HIPAA/HITECH, GDPR, CCPA, and GxP, with the ability to translate regulatory requirements into architectural controls across a diverse platform estate.
Foundational to intermediate knowledge of AI and ML security considerations, including LLM application risks, model pipeline security, and the data protection implications of AI features embedded in or connected to enterprise data platforms.
Demonstrated ability to operate at the intersection of security and data platform teams, communicating architecture decisions to data engineers, platform architects, business data owners, and senior stakeholders.
Experience within regulated industries — life sciences, healthcare, or financial services — with direct exposure to clinical, patient-level, or pharmaceutical data security requirements is preferred.
Bachelor’s degree in Computer Science, Information Security, Data Management, or equivalent practical experience is preferred.
Relevant certifications such as CISSP, CISM, CDPSE, CCSP, AWS/Azure Security Specialty, or CIPP/E are preferred but not mandatory.
Working knowledge of data governance and security frameworks such as NIST Privacy Framework, DAMA-DMBOK, ISO 27001, or similar is an advantage.
Strong written and verbal communication skills, including experience producing architecture documentation, security standards, and executive-level reporting for senior leadership and governance forums. Apply Now 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score Similar Jobs Account Executive – Electronic Security Systems 🔥 2 hours ago K Group Companies 51 - 200 Website LinkedIn All Job Openings 🇺🇸 United States – Remote ⏰ Full Time 🟡 Mid-level 🟠 Senior 👮‍♂️ Cybersecurity / Security Engineer Cloud Technical Account Manager – Electronic Security Systems 🔥 2 hours ago K Group Companies 51 - 200 Website LinkedIn All Job Openings Technical Account Manager for electronic security systems, managing client relationships and driving growth. Collaborate with clients to align solutions across physical security and managed services. 🇺🇸 United States – Remote ⏰ Full Time 🟢 Junior 🟡 Mid-level 👮‍♂️ Cybersecurity / Security Engineer Account Executive – Electronic Security Systems 🔥 2 hours ago K Group Companies 51 - 200 Website LinkedIn All Job Openings Account Executive for Physical Security Solutions in Ohio focusing on B2B sales and territory development. Responsible for new customer acquisition across commercial real estate and multifamily verticals. 🇺🇸 United States – Remote ⏰ Full Time 🟡 Mid-level 🟠 Senior 👮‍♂️ Cybersecurity / Security Engineer Cloud Automation Security Engineer 🔥 6 hours ago Conduent 10,000+ employees 🤝 B2B 🛍️ eCommerce 🏛️ Government Website LinkedIn All Job Openings Security Engineer enhancing cybersecurity capabilities via automation and engineering practices at Conduent. Collaborating with teams to streamline incident response and vulnerability management. 🇺🇸 United States – Remote 💵 $96.3k - $125k / year 💰 Venture Round on 2009-01 ⏰ Full Time 🟡 Mid-level 🟠 Senior 👮‍♂️ Cybersecurity / Security Engineer 🦅 H1B Visa Sponsor Cyber Security JavaScript Python ServiceNow Information Security Engineer 🔥 9 hours ago Keyfactor 201 - 500 🔐 Security 📡 Telecommunications 🏢 Enterprise Website LinkedIn All Job Openings Information Security Engineer at Keyfactor responsible for security operations and compliance with frameworks such as ISO 27001:2022 and SOC 2 Type II. 🇺🇸 United States – Remote ⏰ Full Time 🟡 Mid-level 🟠 Senior 👮‍♂️ Cybersecurity / Security Engineer 🦅 H1B Visa Sponsor AWS Azure Cloud Firewalls Python View More Security Engineer Jobs 🌐 Worldwide Built by Lior Neu-ner. I'd love to hear your feedback — Get in touch via DM or support@remoterocketship.com Search Search Jobs by country Search jobs by city Search jobs by job title Search entry-level jobs Search junior-level jobs Search senior-level jobs Search jobs by tech stack Search jobs by contract type Search remote internships Search remote part-time jobs Remote jobs Anywhere in the World Companies Hiring Anywhere in the World Companies Hiring Sales People Anywhere in the World Companies Hiring Software Engineers Anywhere in the World Resources Advice Tips for finding remote jobs Interview questions and answers Resume examples Cover letter examples Post a job Affiliates Privacy policy Terms of service Job board SEO course AI Apply Copilot OpenClaw job finder Jobs by Country Remote jobs anywhere in the world (Worldwide remote jobs) Remote jobs United States Remote jobs Australia Remote jobs Brazil Remote jobs Canada Remote jobs France Remote jobs Ireland Remote jobs Germany Remote jobs Netherlands Remote jobs Spain Remote jobs UK Popular Jobs Remote data analyst jobs Remote customer support jobs Remote executive assistant jobs Remote marketing jobs Remote product designer jobs Remote product manager jobs Remote project manager jobs Remote recruiter jobs Remote sales jobs Remote software engineer jobs Jobs by Type Remote full-time jobs Remote part-time jobs Remote contract jobs Remote internship jobs Remote entry-level jobs Remote jobs with no experience required Remote junior jobs (1-3 years of experience) Digital nomad jobs Remote jobs with no degree required Freelance remote jobs Temporary remote jobs Remote jobs hiring now Stay at home mom jobs

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

data security architecturedata classificationaccess governanceencryptiontokenizationmaskingdata loss preventionDSPMIAMAI security

Soft Skills

communicationleadershipcollaborationproblem-solvingorganizational skillsstakeholder managementdocumentationreporting

Certifications

CISSPCISMCDPSECCSPAWS Security SpecialtyAzure Security SpecialtyCIPP/E