AI Data Protection Architect

Are you looking to thrive in a stimulating work environment? 

Join Levio, a leader in digital transformation, and take your career to the next level. You will work alongside high-caliber professionals on ambitious, large-scale technology projects, directly embedded in our clients’ environments. At Levio, we value expertise, curiosity, and continuous improvement — and we give you the space to grow. 

About the Role

We are seeking AI Data Protection Architects to contribute to major projects.
The Data Protection & Privacy Architect is responsible for defining, governing, and implementing the enterprise architecture required to protect personal, sensitive, and regulated data throughout its lifecycle. This senior role ensures that privacy and data protection requirements are embedded into systems, applications, cloud platforms, analytics environments, and business processes by design and by default. The architect acts as a strategic advisor to executive leadership, legal, cybersecurity, IT, and business teams, ensuring compliance with privacy regulations while enabling secure and responsible data usage. The role will be remote.

Why Join Levio? 

• Work on complex, high impact digital transformation projects 

• Collaborate with experienced, multidisciplinary teams 

• Continuously develop your technical and professional expertise 

• Enjoy flexibility, autonomy, and a strong people first culture 

• Be part of an organization that values diversity, inclusion, and innovation 

Role and Responsibilities 

Privacy & Data Protection Architecture

• Define and maintain enterprise privacy-by-design and privacy-by-default architectures.

• Architect data protection controls across applications, infrastructure, cloud, and data platforms.

• Establish standards for data classification, handling, retention, archiving, and secure destruction.

• Ensure consistent application of data protection controls across on-premise, cloud, and hybrid environments.

Regulatory & Governance Leadership

• Architect privacy governance frameworks aligned with GDPR, Quebec Law 25, PIPEDA, and ISO/IEC 27701.

• Define control baselines, assurance mechanisms, and compliance monitoring models.

• Support executive decision-making related to privacy risk, compliance posture, and regulatory exposure.

• Collaborate with legal, internal audit, and GRC teams to ensure regulatory alignment.

Data Security & Risk Management

• Architect encryption, key management, and secrets management strategies.

• Define data loss prevention (DLP) architectures and monitoring mechanisms.

• Ensure strong access controls and segregation of duties for sensitive data.

• Lead privacy risk assessments for complex systems, cloud platforms, AI solutions, and analytics environments.

Data Lifecycle & Enterprise Integration

• Architect solutions for data discovery, data mapping, and records of processing activities (RoPA).

• Ensure privacy requirements are integrated into SDLC, DevSecOps, and data engineering pipelines.

• Support privacy requirements for AI, machine learning, and advanced analytics use cases.

• Ensure auditability, traceability, and accountability of data usage.

Third-Party & Cloud Data Protection

• Define architectures for secure data sharing with third parties and vendors.

• Establish data protection requirements for outsourcing, SaaS, and cloud providers.

• Architect controls for cross-border data transfers and data residency requirements.

Incident & Breach Management (Privacy Context)

• Support design of data breach detection, response, and notification processes.

• Act as senior advisor during privacy incidents and regulatory reporting.

• Ensure evidence collection and documentation meet regulatory expectations.

Leadership & Advisory

• Act as the senior subject matter expert for data protection and privacy architecture.

• Mentor privacy analysts, GRC professionals, and security architects.

• Communicate privacy risks, architectural decisions, and mitigation strategies to executives and boards.

• Represent the organization with regulators, auditors, and external stakeholders when required.

Qualifications and Experience 

• Deep expertise in data protection and privacy-by-design principles.

• Strong understanding of privacy regulations and standards: GDPR, Quebec Law 25, PIPEDA, ISO/IEC 27701

• Ability to design enterprise data protection architectures across: Applications, Databases, Cloud platforms, Data lakes and analytics environments

• Expertise in data classification, data mapping, and records of processing activities (RoPA).

• Strong knowledge of data security controls: Encryption (at rest, in transit, and in use), Key management systems (KMS, HSM), Tokenization, anonymization, and pseudonymization, Data Loss Prevention (DLP)

• Experience architecting identity and access controls for sensitive data: Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), Privileged Access Management (PAM)

• Ability to design data retention, archiving, and secure data destruction strategies.

• Familiarity with cloud-native data protection and governance tools: Azure Purview / Microsoft Purview, AWS Macie, Google Cloud DLP

• Experience integrating privacy and data protection into: DLC and DevSecOps pipelines, Data engineering and analytics workflows

• Ability to assess privacy risks in AI, machine learning, and large-scale data processing systems.

• Strong understanding of logging, monitoring, auditability, and evidence collection.

• Experience with privacy management and GRC platforms: OneTrust, TrustArc, ServiceNow GRC

• CIPP/E, CIPP/C, CIPM, ISO/IEC 27701 Lead Implementer / Lead Auditor, CDPSE, CISSP (an asset)

Compensation (Ontario)

The salary range provided reflects a good faith estimate based on factors such as experience, technical expertise, location, and relevant certifications. Final compensation will be determined according to the specific circumstances of each candidate.

Estimated salary range: $110,000 to $150,000 per year.

This posting is a current hiring need.

Benefits and Work Environment 

Levio offers a comprehensive and flexible benefits package designed to support your professional growth and personal wellbeing, including: 

• 4 weeks of cumulative vacation starting from day one 

• Flexible working hours 

• Professional Development Allowance (PDA) for training, computer equipment, and physical activities 

• Training tailored to your areas of expertise 

• Registered Retirement Savings Plan (RRSP) with employer contribution up to 3% of gross salary 

• Modular group insurance plan

• Public transportation or parking reimbursement when required 

• Referral bonuses 

• 11 statutory holidays 

• Personal days 

• An active social life (5to7 events, social club, healthy snacks, coffee, and more) 

Position Details 

• Employment type: Full time, permanent 

Notice on the Use of Artificial Intelligence in Recruitment

We use AI enabled tools to help sort and review applications based on job related criteria. Final decisions regarding candidate progression are always made by a human recruiter.

Employment Equity 

Levio subscribes to the principle of employment equity and applies an equal access employment program for women, Indigenous peoples, visible minorities, ethnic minorities, and persons with disabilities. 

We value diversity and inclusion and are committed to creating a healthy, accessible, and rewarding work environment that highlights the unique contributions of our employees. Accommodations are available upon request for candidates participating in all aspects of the selection process.