Agile DefenseRemote
Data Loss Prevention Security Engineer
United States
Full Time
1 week ago
$130,000 - $142,000 USD
No H1B
Key skills
AzureCyber SecurityAzure ADEntra IDJiraChange Management
About this role
Role Overview
- Designing, implementing, and managing enterprise data protection solutions across our enterprise operating environment
- Ensuring that sensitive and regulated information is discovered, classified, and protected throughout its lifecycle
- Serving as the subject matter expert (SME) for data protection and Microsoft Purview Information Protection (MIP/DLP)
- Leading policy configuration, tuning, and enforcement across the organization
- Implementing and maintaining Microsoft Purview, DLP, Information Protection, and compliance policies, plans, and procedures
- Developing and tuning DLP rules for endpoints to manage the flow of data between approved boundaries
- Managing and optimizing sensitivity labels, mandatory encryption, and content marking across Microsoft 365 and supported third-party integrations
- Collaborating with IT and department teams to align DLP policy coverage with regulatory and contractual data handling requirements
- Investigating and responding to DLP incidents, working with Defender XDR and Sentinel to correlate events and generate actionable insights
- Maintaining DLP dashboards and reporting to track violations, policy effectiveness, and user behavior trends
- Serving as the technical liaison for enterprise data protection initiatives involving Purview, Zscaler, Qualys, and related security tools
- Supporting periodic policy reviews, risk assessments, and audits, ensuring continuous compliance and alignment with security architecture standards
- Documenting DLP processes, SOPs, and configuration baselines in accordance with company change management practices
- Providing technical guidance and training to administrators and end-users on data handling best practices
Requirements
- Bachelor’s degree in Cybersecurity, Information Systems, or related field (or equivalent experience)
- 5+ years of experience in information security, with at least 2+ years focused on data protection and DLP engineering
- At least one of the following or related certifications:
- Microsoft Certified Information Protection Administrator Associate (SC-400)
- Microsoft Certified Cybersecurity Architect Expert (SC-100)
- Hands-on expertise in Microsoft Purview Information Protection/DLP, Microsoft 365 E5 Security, Defender for Endpoint, Intune app protection, and Entra ID (Azure AD)
- Actionable knowledge of data classification standards and compliance frameworks (NIST 800-171, CMMC, ISO 27001, HIPAA)
- Strong understanding of DLP rule logic, sensitivity label configuration, and incident response workflows
- Experience with KQL queries, Microsoft Sentinel, and automated DLP alert handling through SOAR or ticketing tools (e.g., Jira)
- Must be a proactive self-starter with ability to effectively manage timelines for delivery and execution.
Tech Stack
- Azure
- Cyber Security
Benefits
- Competitive and comprehensive benefits package
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development opportunities