Data Security Engineer II

We don’t think about job roles in a traditional way. We are anti-silo. Anti-career stagnation. Anti-conventional. 

Beyond ONE is a digital services provider radically reshaping the personalised digital ecosystems of consumers in high growth markets around the world. We’re building a digital services aggregator platform, with a strong telco foundation, and a profitable growth strategy that empowers users to drive their own experience—subscribe once, source from many, and only pay for what you actually use. 

Since being founded in 2021, we’ve acquired Virgin Mobile MEA, Friendi Mobile MEA and Virgin Mobile LATAM (with 6.5 million subscribers) and 1600 dedicated  colleagues across Chile, Colombia, KSA, Kuwait, Mexico, Oman and UAE. 

To disrupt for good takes a rebellious spirit, a questioning mind and a warm heart. We really care about how to get things done and not who manages who. We benefit from our diversity, and together, we disrupt the way we and others thinkin about our lives for good.  

Do you want to exchange ideas, learn from each other and leave your mark on our journey? This is the place for you. 

Role Purpose

Why this role matters:
As Data Security Engineer II, you will play a key role in safeguarding the confidentiality, integrity, and availability of Beyond ONE’s data. Your contributions will help shape our enterprise data protection strategy and privacy infrastructure, and ultimately the way we disrupt the digital services market through secure innovation.

What success looks like:
In your first year, you will lead enterprise-wide implementation of encryption, anonymization, and data masking solutions; establish compliance alignment with KSA CRF/PDPL and UAE Data Protection Law; and embed data privacy controls into DevSecOps workflows to improve incident response and risk mitigation across environments.

Why this is for you:
If you're keen on solving the massive challenge of securing sensitive information across hybrid environments while aligning with fast-changing data protection laws, hit us up. We're looking for someone ready to tackle this challenge head-on and make an impact from day one.

Key Responsibilities

In this role, you will:

• Lead the design and implementation of robust data security solutions, ensuring sensitive data is protected across structured and unstructured datasets.
• Collaborate with data governance, compliance, engineering, and legal teams, driving alignment between business data usage and security controls.
• Manage enterprise encryption technologies, ensuring effective key management and data confidentiality at rest and in transit.
• Drive initiatives in data masking, anonymisation, and pseudonymisation to support regulatory compliance and secure data sharing.
• Deploy and operationalize Data Loss Prevention (DLP), Data Classification, and Rights Management tools, integrating them with business workflows.
• Conduct security assessments across cloud and on-prem environments to identify risks and implement mitigation strategies.
• Embed data security best practices into DevOps pipelines and infrastructure-as-code practices.
• Respond to and investigate incidents related to data breaches or unauthorized access, ensuring rapid containment and learning.
• Perform regular audits and risk assessments related to sensitive data handling, storage, and transfer.

Qualifications & Attributes

We’re seeking someone who embodies the following:

Education:
Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related field.

Experience:

• 3–5 years of hands-on experience in information security with a focus on data protection and privacy.
• Demonstrated success implementing encryption, anonymisation, and masking solutions across large-scale data sets.
• Experience working with data protection regulations such as GDPR, KSA CRF/PDPL, or UAE Data Protection Law.
• Proven track record managing DLP tools, key management systems, and other data-centric security technologies.
• Exposure to hybrid data architectures in both cloud and on-premise environments

Must-haves:

• Strong understanding of encryption protocols and key management systems (e.g., AWS KMS, Azure Key Vault, HashiCorp Vault).
• Experience with data protection platforms (e.g., Microsoft Purview, IBM Guardium, Protegrity, Voltage).
• Proficiency in scripting (e.g., Python, PowerShell, Bash) for automation and data discovery.
• Familiarity with IAM, RBAC, ABAC frameworks and security controls for modern data stacks like Snowflake, Databricks, BigQuery.
• Understanding of DevSecOps and integrating data security into CI/CD pipelines.
• Experience with AWS, Azure, or GCP data protection capabilities.

Nice-to-haves:

• Knowledge of network-level security for data protection (TLS, segmentation, firewalls).
• Certifications such as CISSP, CDPSE, CIPT, or CISM.

Unique Attributes:

• Thrives in fast-paced and technically demanding environments.
• Possesses a strong sense of domain ownership and the ability to execute independently.
• Excels with Agile methodologies and DevSecOps principles.

What we offer:

• Rapid learning opportunities - we enable learning through flexible career paths, exposure to challenging & meaningful work that will help build and strengthen your expertise.
• Hybrid work environment - flexibility to work from home 2 days a week.
• Healthcare and other local benefits offered in market.

By submitting your application, you acknowledge and consent to the use of Greenhouse & BrightHire during the recruitment process. This may include the storage and processing of your data on servers located outside your country of residence. For further information, please contact us at dataprivacy@beyond.one.