Data Security Engineer

THE ROLE

The Data Security Developer will be a highly technical, hands-on individual responsible for building, implementing, and automating security controls directly within Live Nation Entertainment's data platforms and pipelines. This role focuses on writing code, scripts, and configurations to enforce security policies, integrating security into existing data workflows, and developing tools that enhance our data security posture, with a strong emphasis on Databricks and AWS services

WHAT THIS ROLE WILL DO

Security Control Implementation (Code-First) : Develop, implement, and maintain security controls for data access (ACLs, entitlements), encryption, data masking, and network segmentation within Databricks, SQL Server, AWS S3, and data ingestion services. This includes coding solutions for data segmentation and access restrictions.

Databricks Security Engineering : Configure and optimize Databricks security features programmatically, including Unity Catalog permissions, secure cluster policies, and secrets management (Databricks Secrets).

Secure Code and Static Analysis : Integrate and manage static code analysis (SAST) and software composition analysis (SCA) tools within CI / CD pipelines for Databricks notebooks and data-related code. Understand and actively address / correct the output of these tools.

Programmatic IAM and Non-Human Access : Develop and maintain scripts / code to manage programmatic IAM (service and non-human accounts) access to data systems (e.g., ETLs). This includes token management, access provisioning, and automated auditing of non-human accounts.

Automated Data Labeling / Classification Tooling : Potentially develop or integrate automated tools for data labeling and classification specific to the data team, guiding what types of labels and classifications should be required.

Alerting and Detection Engineering : Develop and implement data-specific alerting and detection mechanisms (e.g., Splunk queries, custom scripts) to provide insight into data security events and integrate with central InfoSec platforms like PagerDuty for relevant alerts.

Post-Incident Forensics (Data and Event Evidence Collection) : Drive the collection and initial review of data and event evidence during data security incidents, within the CDS org.

Remediation Implementation : Serve as a "test-engineer / developer" to implement technical changes and remediate security findings identified through architecture reviews, audits, or incidents.

VPC and Tooling Support : Address infrastructure needs related to data security, such as VPC configurations, PrivateLink setup, and support operations for data security tooling.

Collaboration and Guidance : Partner closely with data engineering, DevOps, and TechOps teams to embed security into workflows and provide technical guidance on secure coding practices.

WHAT THIS PERSON WILL BRING

Bachelor's degree in Computer Science, Software Engineering, Cybersecurity, or a related technical field.

4+ years of hands-on experience in software development or security engineering, with a strong focus on building secure systems or security automation.

Proficiency in Python, Scala, or similar scripting / programming languages, with a track record of writing production-level code.

Demonstrated hands-on experience with Databricks platform security, including programmatic interaction with Unity Catalog, cluster configuration APIs, and Databricks Secrets.

Strong expertise in AWS security services (IAM, KMS, S3, VPC) and their programmatic control.

Experience with CI / CD pipeline security tools (SAST, SCA, IaC scanning) and understanding how to remediate findings.

Understanding of data access governance (including ACLs) and programmatic management of entitlements.

Familiarity with SIEM platforms (e.g., Splunk) for log integration and developing detection rules.

Strong problem-solving skills and ability to translate security requirements into robust, automated solutions.

Relevant industry certifications (e.g., AWS Certified Developer, AWS Certified Security - Specialty, Databricks Certified Data Engineer Associate / Professional).

BENEFITS & PERKS

Our motto is ‘Taking Care of Our Own’ through 6 pillars of benefits :

HEALTH : Medical, vision, dental and mental health benefits for you and your family, with access to a health care concierge, and Flexible or Health Savings Accounts (FSA or HSA)

YOURSELF : Free concert tickets, generous paid time off including paid holidays, sick time, and personal days

WEALTH : 401(k) program with company match, stock reimbursement program

FAMILY : New parent programs including caregiver leave and baby bonuses, plus fertility, adoption, foster, or surrogacy support

CAREER : Career and skill development programs with School of Live, tuition reimbursement, and student loan repayment

OTHERS : Volunteer time off, crowdfunding match