Consultant - Senior Security Architect

ABOUT KALLES GROUP:

Everyone deserves to be secure. Our mission at Kalles Group is to help secure the future for companies of all shapes and sizes.

While our expertise spans multiple disciplines, our method remains consistent: building trust and relationship with people -- whether you are a client, a consultant, or--in this case--a candidate.

No matter what role you come from--whether you're an executive or just starting your career-you can expect our highest level of attention and respect. We want to find the right fit for each role, but we also want you to find the right fit for your career.

We believe the best way to show you what our team is like is to treat you like you're already a part of it. We hope you'll consider joining our team of experienced professionals who are building their careers at Kalles Group—and having fun while doing it.

We are seeking a Senior Security Architect to lead the security strategy, design, and implementation for a next-generation enterprise data platform leveraging Snowflake, Databricks, and advanced AI/ML workloads for our client. This architect will serve as a technical leader and strategic partner, ensuring that our client's data platform meets the highest standards of security, privacy, and compliance while enabling high-velocity engineering and data science teams. Success in this role with provide reduced security incident risk across the data and AI platform, have successful audit and compliance outcomes tied to platform initiatives, and result in high engineering and data science velocity with minimal friction due to proactive security design.

WHAT YOU WILL DO:

Security Architecture & Strategy

• Define the end-to-end security architecture for the enterprise data platform, including data ingestion, processing, analytics, and AI model deployment.
• Establish security-by-design principles across data engineering, ML pipelines, and analytics workflows in Snowflake and Databricks.
• Collaborate with data platform architects, engineers, and product owners to embed security controls at every layer of the stack.

Cloud & Data Platform Security

• Design and implement cloud-native security architectures for data services in AWS (or Azure), including IAM, VPCs, KMS, Secrets Manager, S3, and Lakehouse integrations.
• Ensure secure integration between Snowflake, Databricks, and AI/ML toolchains (e.g., MLflow, Feature Store, model serving frameworks).
• Establish least privilege access and RBAC models for data, models, APIs, and orchestration pipelines.

Governance, Risk & Compliance

• Partner with GRC teams to meet regulatory and compliance requirements (e.g., HIPAA, SOC2, ISO 27001).
• Lead risk assessments, threat modeling, and data classification efforts for platform workloads.
• Provide strategic input for data governance practices around lineage, usage monitoring, and audit logging.

Security Operations & Incident Readiness

• Integrate platform telemetry with SIEM and SOAR tools to monitor, alert, and investigate security events.
• Design secure CI/CD pipelines for data and ML operations, with artifact signing, scanning, and policy enforcement.
• Contribute to and test incident response plans involving sensitive data and AI system risks (e.g., model inversion, data leakage).

Leadership & Enablement

• Serve as security thought leader across the program, influencing roadmaps, policies, and engineering decisions.
• Mentor developers, engineers, and data scientists on secure development and data handling practices.
• Coordinate with internal security teams (AppSec, CloudSec, Risk) and external partners or auditors as needed.

ABOUT YOU:

• Your values:
  • Integrity: You believe in doing the right thing, even when it's uncomfortable, seemingly inefficient, or costly.
  • Purposefulness: You have a desire to serve others with your skillset and an openness to continuous learning and growth.
  • Ownership: You stick to your commitments, follow up with action, and seek clarity in communication & expectations.

Your experience:

• 10+ years of experience in security architecture, with deep expertise in cloud security and data protection.
• Proven experience securing enterprise data platforms including Snowflake, Databricks, or comparable modern data stacks.
• Advanced knowledge of cloud security in AWS (or Azure), especially IAM, networking, secrets, and encryption.
• Familiarity with AI/ML risks, including secure model lifecycle management and privacy in model training.
• Experience working in regulated environments, with hands-on leadership in meeting compliance standards.

We'd love it if you have:

• Security certifications such as CISSP, CCSP, or AWS Security Specialty.
• Prior experience implementing security for AI platforms, vector databases, or LLM-enabled systems.
• Exposure to DevSecOps, infrastructure as code, and data mesh or federated architecture concepts.

WHAT WE OFFER:

• Salary range for this role is $160,000-$220,000 per year, dependent on experience.  
• Medical, dental, vision plans
• 401(k) with matching
• 3 weeks of Paid Time Off, PLUS 8 paid company holidays and 2 flexible holidays for anything you want to celebrate!
• Work/life balance – we know there’s more to life than work! We encourage our team to pursue other passions, get outside, and spend time with family. We work with clients and consultants to set expectations for a manageable workload.

LOCATION:

This role is located in Seattle, Washington.

HOW TO APPLY:

Please fill out the form below (including uploading your most recent resume) and we'll be in touch! We know imposter syndrome can be a barrier to many great applicants. We hope you'll still consider applying. That's why we've made the application process as short and simple as possible.

Even if you're not a fit for the role, you can expect to hear back from us! We want you to have the best experience as a candidate, so please feel free to share feedback at any stage of the process to talent@kallesgroup.com.

Kalles Group is an equal-opportunity employer and does not discriminate on the basis of creed, nationality, race, ethnicity, disability, gender, or other protected class.