Security Governance Lead – Data Warehouse Modernization (Ref: 5739)
Part-Time / Remote
Project: Transportation Authority Data Warehouse Modernization
Work Location: Remote, with availability for meetings during Pacific Time business hours
Commitment: Part-time / as-needed throughout project planning, design, implementation, and governance review phases
Position Summary
Estrada Consulting, Inc. is seeking a Security Governance Lead to support a public-sector transportation data warehouse modernization project. This part-time role will provide governance, security, privacy, access control, observability, and operational accountability guidance for a modern data platform environment.
The Security Governance Lead will work closely with the Project Manager, Data Architect, Data Engineering team, BI/reporting team, and client stakeholders to ensure the solution aligns with transportation agency needs, data governance best practices, role-based access control, identity management, auditability, privacy requirements, data cataloging, lineage, and ongoing operational controls.
This role is intended for a senior consultant who can provide practical governance and security oversight for a data modernization project without requiring full-time project participation.
Key Responsibilities:
- Provide security governance guidance for the design and implementation of a modern data warehouse, analytics, and reporting environment.
- Support the definition of governance roles and responsibilities, including data owners, data stewards, system administrators, report owners, and operational support roles.
- Advise on role-based access control, including user groups, permission models, least-privilege access, privileged access, and separation of duties.
- Support alignment between the data platform security model and the client’s identity and access management environment, including enterprise directory groups, single sign-on, MFA, and access review processes.
- Assist with defining governance expectations for data cataloging, metadata management, data classification, data ownership, and searchable data assets.
- Provide guidance on data lineage, including how source-to-target data movement, transformation logic, reporting dependencies, and downstream consumption should be documented and maintained.
- Support privacy and data protection practices for transportation-related operational, ridership, customer, location, financial, or sensitive business data.
- Advise on audit controls, logging, access review, change tracking, report usage monitoring, and evidence needed to support operational accountability.
- Help define observability requirements for the data platform, including pipeline monitoring, data quality alerts, error handling, availability, usage metrics, and support handoff procedures.
- Review technical design documents, governance deliverables, implementation plans, and operational procedures to confirm security and governance considerations are addressed.
- Participate in selected workshops or client meetings related to governance, security, access control, operational readiness, and support transition.
- Contribute to recommendations for sustainable governance processes that can be maintained by the client after implementation.
Required Qualifications:
- Experience supporting transportation, transit, mobility, public-sector, or infrastructure-related data environments.
- Experience with data warehouse, business intelligence, analytics, data integration, or data modernization projects.
- Strong understanding of data governance practices, including data ownership, stewardship, metadata, cataloging, lineage, access controls, auditability, and operational accountability.
- Experience designing or reviewing role-based access control models for data platforms, reporting tools, or enterprise applications.
- Experience aligning platform access controls with enterprise identity management practices, including Active Directory, Azure Entra ID, SSO, MFA, or similar IAM environments.
- Experience with privacy, security, and compliance considerations for public-sector data systems.
- Ability to review technical and governance documentation and provide practical, implementation-focused recommendations.
- Strong communication skills with the ability to work with business stakeholders, technical teams, security teams, and executive sponsors.
- Ability to work independently in a part-time advisory capacity while producing clear, actionable guidance.
Preferred Qualifications:
- Experience with transportation agency data, such as ridership, fare, scheduling, service planning, operations, asset, customer service, or performance reporting data.
- Experience with cloud-based data platforms, Microsoft Azure, Snowflake, Databricks, SQL Server, Power BI, Tableau, or similar technologies.
- Experience with data catalog or governance tools such as Microsoft Purview, Collibra, Alation, Informatica, Azure Data Catalog, or similar platforms.
- Experience supporting operational readiness, production support models, monitoring frameworks, or data platform observability.
- Experience with public-sector security policies, NIST-based controls, CJIS-style control frameworks, privacy impact assessments, or IT governance review processes.
Nice-to-Have Certifications:
- CISSP – Certified Information Systems Security Professional
- CISM – Certified Information Security Manager
- CRISC – Certified in Risk and Information Systems Control
- CISA – Certified Information Systems Auditor
- CDMP – Certified Data Management Professional
- Microsoft Certified: Azure Security Engineer Associate
- Microsoft Certified: Azure Solutions Architect Expert
- Microsoft Certified: Azure Data Engineer Associate
- Microsoft Certified: Power BI Data Analyst Associate
- ITIL Foundation or ITIL Managing Professional
- PMP or Agile/Scrum certification
Key Skills:
- Data governance
- Security governance
- Transportation data
- Public-sector data systems
- RBAC
- Identity and access management
- Data catalog
- Data lineage
- Metadata management
- Audit controls
- Privacy controls
- Data classification
- Operational accountability
- Observability
- Monitoring and logging
- Data quality controls
- Access reviews
- Governance roles and responsibilities
- Cloud data platforms
- BI and reporting governance