I'd suggest that the perfect tool here is Zeppelin (notebooks), basically a centralised multi-user sandbox with built-in versioning and scheduling. Deployment of a json notebook to different environments can be handled easily while security can be done at the data layer (ie. SFtp, file access, database, API level).