Operationalizing Fine-Grained Data Security With ABAC at Enterprise Scale

As Amgen’s analytics platform scaled across teams and data domains, enforcing fine-grained data access through direct user and group entitlements became difficult to operate, govern and audit. Attribute-Based Access Control (ABAC) enabled a shift to policy-driven access based on business attributes, delivering consistent enforcement, improved scalability and reduced operational overhead across the platform.This session details how ABAC emerged as the next step in Amgen’s data security architecture. We will cover early challenges with third-party access control tools, our migration to Databricks Unity Catalog, and the progressive adoption of dynamic views, row-level filtering and column-level masking. These capabilities laid the groundwork for scalable, attribute-driven access control.Attendees will learn the key architectural choices, implementation of tradeoffs and governance results behind deploying ABAC on Databricks at Amgen.