Staff Data Security Engineer

We don’t think about job roles in a traditional way. We are anti-silo. Anti-career stagnation. Anti-conventional. 

Beyond ONE is a digital services provider radically reshaping the personalised digital ecosystems of consumers in high growth markets around the world. We’re building a digital services aggregator platform, with a strong telco foundation, and a profitable growth strategy that empowers users to drive their own experience—subscribe once, source from many, and only pay for what you actually use. 

Since being founded in 2021, we’ve acquired Virgin Mobile MEA, Friendi Mobile MEA and Virgin Mobile LATAM (with 6.5 million subscribers) and 1600 dedicated  colleagues across Chile, Colombia, KSA, Kuwait, Mexico, Oman and UAE. 

To disrupt for good takes a rebellious spirit, a questioning mind and a warm heart. We really care about how to get things done and not who manages who. We benefit from our diversity, and together, we disrupt the way we and others thinkin about our lives for good.  

Do you want to exchange ideas, learn from each other and leave your mark on our journey? This is the place for you. 

Role Purpose

As a Staff Data Security Engineer, you will act as a core design authority and hands-on subject matter expert for our enterprise data security initiatives. You will architect and implement scalable solutions to protect data across various platforms — including production infrastructure, cloud data lakes, analytics platforms (e.g., Databricks), and hybrid environments — with a strong focus on data protection, privacy, compliance, and secure enablement of our evolving data strategy. This role will support the design, implementation, and management of technologies and policies that deliver enterprise-wide data privacy, data masking, encryption, and anonymization.

 

You’ll lead cross-functional collaborations, influence global data security policy, and mentor engineers while safeguarding the integrity, confidentiality, and availability of our critical data assets.

 

Key Responsibilities

In this role, you will:

● Architect and lead the implementation of enterprise-grade data security frameworks across structured and unstructured datasets.

● Own the security design of large-scale data warehouse and analytics platforms (e.g., Databricks, Snowflake, BigQuery), ensuring robust protection of sensitive data within modern data ecosystems.

● Establish and manage end-to-end data security practices across the full lifecycle, including encryption, data classification, key management, pseudonymization, and fine-grained access control.

● Drive adoption and tuning of Privacy-by-Design in collaboration with data governance, engineering, compliance, and product teams.

● Define strategy and standards for secure data sharing, anonymization, and masking in support of cross-border analytics and access control policies.

● Guide the integration of security controls into CI/CD and data pipelines (DevSecOps), collaborating with infrastructure and DevOps teams in secure SDLC practices.

● Perform security risk modeling and deliver technical assessments across hybrid environments (AWS, GCP, Azure, on-prem), with a focus on mitigating risk in large data environments.

● Serve as security SME in key regulatory and compliance frameworks (e.g., GDPR, PDPL and other regional laws), advising on policy impacts and security design implementation.

● Work closely with DPO, risk and compliance, legal, and engineering teams to align data usage policies with security controls.

● Monitor, report, and respond to incidents related to data breach, unauthorized access, or loss of sensitive information.

● Conduct periodic audits and risk assessments related to data handling and storage.

 

Qualifications & Attributes

● Education:

○ Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related field.

○ Professional certifications preferred (one or more of the following):

■ Certified Information Systems Security Professional (CISSP)

■ Certified Data Privacy Solutions Engineer (CDPSE)

■ Certified Information Privacy Technologist (CIPT)

■ AWS/GCP/Azure Security or Data Engineering Certification

■ Databricks Certified Data Engineer / Security Specialist (preferred)

● Experience:

○ 8+ years in information security, with 4+ years focusing on data security and cloud data platforms.

○ Deep expertise in securing large-scale data warehouses (Databricks, Snowflake, BigQuery), enabling row/column-level security, data lineage, and access auditing.

○ Hands-on experience implementing encryption at rest/in transit, fine-grained IAM/RBAC/ABAC, and enterprise key management solutions.

○ Proven track record of designing secure architectures and operating at scale across cloud platforms (AWS, Azure, GCP).

○ Strong experience with data protection governance, including GDPR, KSA CRF/PDPL, and UAE Data Protection Law.

○ Experience leading DLP, data privacy, and data classification projects across global business units.

○ Strong scripting/automation skills in Python, Bash, or PowerShell for secure data discovery and remediation.

○ Comfortable navigating complex security challenges in CI/CD and infrastructure-as-code environments (e.g., Terraform, Ansible).

○ Technical expertise in working with Enterprise Data security tools like Microsoft Purview.

● Unique Attributes:

○ Strategic thinker with hands-on problem-solving capability.

○ Demonstrated leadership in cross-functional and multicultural teams.

○ Exceptional communication skills with the ability to simplify technical risks for stakeholders.

○ Passionate about knowledge sharing, and elevating security maturity across the enterprise.

○ Thrives in a fast-paced, innovation-oriented environment.

 

What we offer:

• Rapid learning opportunities - we enable learning through flexible career paths, exposure to challenging & meaningful work that will help build and strengthen your expertise.
• Hybrid work environment - flexibility to work from home 2 days a week.
• Healthcare and other local benefits offered in market.

 

By submitting your application, you acknowledge and consent to the use of Greenhouse & BrightHire during the recruitment process. This may include the storage and processing of your data on servers located outside your country of residence. For further information, please contact us at dataprivacy@beyond.one.