IT Principal Consultant | Data On Cloud Platform | AWS
Share
Job Location:
Irvine, CA - USA
Monthly Salary:
Not Disclosed
Posted on:
6 hours ago
Vacancies:
1 Vacancy
Job Summary
POC: Sam Chavez
ATTENTION ALL SUPPLIERS!!!
READ BEFORE SUBMITTING
UPDATED CONTACT NUMBER and EMAIL ID is a MANDATORY REQUEST from our client for all the submissions
Limited to 1 submission per supplier. Please submit your best.
We prioritize endorsing those with complete and accurate information
Avoid submitting duplicate profiles. We will Reject/Disqualify immediately.
Make sure that candidates interview schedules are updated. Please inform the candidate to keep their lines open.
Please submit profiles within the max proposed rate.
Please make sure to TAG the profiles correctly if the candidate has WORKED FOR INFOSYS as a SUBCON or FTE.
MANDATORY: Please include in the resume the candidate s complete & updated contact information (Phone number Email address and Skype ID) as well as a set of 5 interview timeslots over a 72-hour period after submitting the profile when the hiring managers could potentially reach to them. PROFILES WITHOUT THE REQUIRED DETAILS and TIME SLOTS will be REJECTED.
Job Title: Principal Consultant Data On Cloud - Platform AWS -- Data Security Engineer
Work Location & Reporting Address: Irvine CA 92618 (Onsite. Will consider candidates willing to relocate to client s location)
Contract duration: 6
MAX VENDOR RATE: $70 per hour max
Target Start Date: 12 May 2026
Does this position require Visa independent candidates only Yes
Must Have Skills:
Design implement and govern data security controls for AWS and Databricks environments
Identity and Access management (IAM)
Security Monitoring & Incident Response
Nice to Have Skills:
AI automation skills
Detailed Job Description:
We are seeking a highly skilled Cloud & Data Platform Security Engineer to design implement and govern security controls for AWS and Databricks environments that enable secure data analytics and reporting in Microsoft Power BI. This role will focus on identity and access management (IAM) compliance security monitoring and configuration hardening across cloud and data platforms.
Key Responsibilities
Identity & Access Management (IAM) Implementation & Governance
Design and enforce RBAC/ABAC policies SCIM provisioning and SSO/MFA for Databricks workspaces.
Manage identity lifecycle including onboarding/offboarding and periodic access reviews.
Integrate Databricks and AWS services with enterprise IAM solutions (e.g. Azure AD Okta).
Implement AWS IAM roles policies and permission boundaries for secure data access.
Ensure secure integration between AWS Databricks and Microsoft Power BI for reporting.
Security Architecture & Design
Develop and maintain security architecture for AWS and Databricks environments supporting Power BI analytics.
Design secure data pipelines and enforce encryption in transit and at rest across AWS S3 Databricks and Power BI.
Implement network security controls (VPC security groups private endpoints) for AWS and Databricks connectivity.
Requirements Gathering & Documentation
Lead requirements gathering sessions with stakeholders to define security needs for AWS Databricks and Power BI integrations.
Document security requirements architecture diagrams and implementation plans.
Maintain detailed security design documentation and update as environments evolve.
Ensure traceability between business requirements and implemented security controls.
Security Monitoring & Incident Response
Investigate and respond to IAM-related and platform security incidents and defects
Compliance & Risk Management
Ensure adherence to SOC 2 HIPAA GDPR and internal security standards across AWS and Databricks.
Implement data governance policies for sensitive data used in Power BI reporting.
Configuration & Hardening
Apply Databricks Security Profile features (CIS-hardened images FIPS 140 encryption TLS 1.2).
Validate secure cluster configurations and enforce encryption policies in Databricks and AWS.
Harden AWS services (EC2 S3 IAM) following CIS benchmarks and best practices.
Collaboration & Reporting
Partner with data engineering BI and cloud teams to implement security best practices.
Provide security posture reports and IAM metrics to leadership.
Support secure integration of Power BI with AWS and Databricks for enterprise reporting.
Qualifications
Education & Experience
Bachelor s degree in Computer Science Information Security or related field (or equivalent experience).
8 years of experience in cloud security engineering with a focus on AWS and data platforms.
Hands-on experience securing Databricks environments and integrating with enterprise IAM solutions.
Technical Skills
Strong knowledge of AWS security services (IAM KMS CloudTrail GuardDuty VPC).
Expertise in Databricks security features cluster hardening and workspace governance.
Familiarity with Microsoft Power BI integration and secure data access patterns.
Proficiency in implementing RBAC/ABAC SSO/MFA and SCIM provisioning.
Understanding of encryption standards (FIPS 140 TLS 1.2) and CIS benchmarks.
Certifications (Preferred)
AWS Certified Security Specialty
Databricks Certified Data Engineer or Security Professional
CISSP or CISM
Microsoft Certified: Power BI Data Analyst Associate (optional but a plus)
Soft Skills
Strong analytical and problem-solving skills.
Excellent communication and collaboration abilities.
Ability to lead requirements gathering and produce clear documentation.
Comfortable working in a fast-paced cross-functional environment.
Minimum Years of Experience:
8 years
Certifications Needed:
None
Top 3 responsibilities you would expect the Subcon to shoulder and execute:
Interview Process (Is face to face required)
Virtual
Any additional information you would like to share about the project specs/nature of work: Project Code :GBSIT Data Services Product and Applicat
ATTENTION ALL SUPPLIERS!!!
READ BEFORE SUBMITTING
UPDATED CONTACT NUMBER and EMAIL ID is a MANDATORY REQUEST from our client for all the submissions
Limited to 1 submission per supplier. Please submit your best.
We prioritize endorsing those with complete and accurate information
Avoid submitting duplicate profiles. We will Reject/Disqualify immediately.
Make sure that candidates interview schedules are updated. Please inform the candidate to keep their lines open.
Please submit profiles within the max proposed rate.
Please make sure to TAG the profiles correctly if the candidate has WORKED FOR INFOSYS as a SUBCON or FTE.
MANDATORY: Please include in the resume the candidate s complete & updated contact information (Phone number Email address and Skype ID) as well as a set of 5 interview timeslots over a 72-hour period after submitting the profile when the hiring managers could potentially reach to them. PROFILES WITHOUT THE REQUIRED DETAILS and TIME SLOTS will be REJECTED.
Job Title: Principal Consultant Data On Cloud - Platform AWS -- Data Security Engineer
Work Location & Reporting Address: Irvine CA 92618 (Onsite. Will consider candidates willing to relocate to client s location)
Contract duration: 6
MAX VENDOR RATE: $70 per hour max
Target Start Date: 12 May 2026
Does this position require Visa independent candidates only Yes
Must Have Skills:
Design implement and govern data security controls for AWS and Databricks environments
Identity and Access management (IAM)
Security Monitoring & Incident Response
Nice to Have Skills:
AI automation skills
Detailed Job Description:
We are seeking a highly skilled Cloud & Data Platform Security Engineer to design implement and govern security controls for AWS and Databricks environments that enable secure data analytics and reporting in Microsoft Power BI. This role will focus on identity and access management (IAM) compliance security monitoring and configuration hardening across cloud and data platforms.
Key Responsibilities
Identity & Access Management (IAM) Implementation & Governance
Design and enforce RBAC/ABAC policies SCIM provisioning and SSO/MFA for Databricks workspaces.
Manage identity lifecycle including onboarding/offboarding and periodic access reviews.
Integrate Databricks and AWS services with enterprise IAM solutions (e.g. Azure AD Okta).
Implement AWS IAM roles policies and permission boundaries for secure data access.
Ensure secure integration between AWS Databricks and Microsoft Power BI for reporting.
Security Architecture & Design
Develop and maintain security architecture for AWS and Databricks environments supporting Power BI analytics.
Design secure data pipelines and enforce encryption in transit and at rest across AWS S3 Databricks and Power BI.
Implement network security controls (VPC security groups private endpoints) for AWS and Databricks connectivity.
Requirements Gathering & Documentation
Lead requirements gathering sessions with stakeholders to define security needs for AWS Databricks and Power BI integrations.
Document security requirements architecture diagrams and implementation plans.
Maintain detailed security design documentation and update as environments evolve.
Ensure traceability between business requirements and implemented security controls.
Security Monitoring & Incident Response
Investigate and respond to IAM-related and platform security incidents and defects
Compliance & Risk Management
Ensure adherence to SOC 2 HIPAA GDPR and internal security standards across AWS and Databricks.
Implement data governance policies for sensitive data used in Power BI reporting.
Configuration & Hardening
Apply Databricks Security Profile features (CIS-hardened images FIPS 140 encryption TLS 1.2).
Validate secure cluster configurations and enforce encryption policies in Databricks and AWS.
Harden AWS services (EC2 S3 IAM) following CIS benchmarks and best practices.
Collaboration & Reporting
Partner with data engineering BI and cloud teams to implement security best practices.
Provide security posture reports and IAM metrics to leadership.
Support secure integration of Power BI with AWS and Databricks for enterprise reporting.
Qualifications
Education & Experience
Bachelor s degree in Computer Science Information Security or related field (or equivalent experience).
8 years of experience in cloud security engineering with a focus on AWS and data platforms.
Hands-on experience securing Databricks environments and integrating with enterprise IAM solutions.
Technical Skills
Strong knowledge of AWS security services (IAM KMS CloudTrail GuardDuty VPC).
Expertise in Databricks security features cluster hardening and workspace governance.
Familiarity with Microsoft Power BI integration and secure data access patterns.
Proficiency in implementing RBAC/ABAC SSO/MFA and SCIM provisioning.
Understanding of encryption standards (FIPS 140 TLS 1.2) and CIS benchmarks.
Certifications (Preferred)
AWS Certified Security Specialty
Databricks Certified Data Engineer or Security Professional
CISSP or CISM
Microsoft Certified: Power BI Data Analyst Associate (optional but a plus)
Soft Skills
Strong analytical and problem-solving skills.
Excellent communication and collaboration abilities.
Ability to lead requirements gathering and produce clear documentation.
Comfortable working in a fast-paced cross-functional environment.
Minimum Years of Experience:
8 years
Certifications Needed:
None
Top 3 responsibilities you would expect the Subcon to shoulder and execute:
Interview Process (Is face to face required)
Virtual
Any additional information you would like to share about the project specs/nature of work: Project Code :GBSIT Data Services Product and Applicat
