HIRING PRACTICES

The preceding job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.
Live Nation recruitment policies are designed to place the most highly qualified persons available in a timely and efficient manner. Live Nation may pursue all avenues available, including promotion from within, employee referrals, outside advertising, employment agencies, internet recruiting, job fairs, college recruiting and search firms.

LI-EF1

THE ROLE

The Principal Data Security Architect / Governance will be a pivotal leader in establishing and maturing Live Nation Entertainment’s data security program. This role is responsible for defining the strategic vision, architectural frameworks, and comprehensive governance policies that ensure the protection of our data assets across their entire lifecycle. Operating at the intersection of high-level strategy and deep technical guidance, this individual will provide expert leadership in designing secure data solutions, defining standards, influencing adoption of best practices, and driving compliance within our AWS and Databricks-centric environment.

WHAT THIS ROLE WILL DO

• Strategic Vision and Roadmap: Define and champion the multi-year data security strategy and roadmap for Live Nation Entertainment, aligning with organizational goals, regulatory requirements (GDPR, CPRA, SOC 2, ISO 27001), and emerging threats.
• Architectural Leadership and Standards Development: Lead the design of robust, secure data architectures for all data platforms (Databricks, SQL Server, AWS S3) and data flows, ensuring security by design. Develop and publish authoritative data security standards that guide secure implementation.
• Data-Based Threat Modeling (Primary Lead): Drive the methodology and execution of data-based threat modeling across our data ecosystem, analyzing what data exists where, its ownership, access patterns, encryption states, and retention lifecycle. This is a critical area for identifying major gaps and informing architectural decisions.
• Governance and Policy Development: Lead the development, formalization, and continuous improvement of data security policies, standards, and procedures, including data classification frameworks, data ownership models, access control principles (e.g., RBAC, ABAC), and data lifecycle management.
• Compliance and Risk Management: Serve as the primary subject matter expert for data security compliance, leading efforts to map controls to regulatory frameworks, conduct data security risk assessments, and support internal and external audits (including interaction with EY for SOX compliance).
• Team Leadership and Guidance: Collaborate with the Director to define team roles, responsibilities, and key initiatives. Provide strategic guidance and architectural expertise to Data Security Developers and Analysts, fostering their growth and ensuring alignment with strategic objectives.
• Technology Evaluation and Guidance: Research, evaluate, and provide architectural guidance on advanced data security technologies and tooling (e.g., DLP, automated data labeling/classification, specialized data system privilege/access governance tools), informing their potential adoption and integration.
• Remediation Planning: Define strategic remediation plans for significant security findings, ensuring alignment with architectural principles.
• ACLs (Advisory/Audit): Serve as the SME for network and user Access Controls related to the data environment, providing architectural and policy guidance, and acting as the internal audit data collection point of contact.