Designing, implementing, and managing enterprise data protection solutions across our enterprise operating environment
Ensuring that sensitive and regulated information is discovered, classified, and protected throughout its lifecycle
Serving as the subject matter expert (SME) for data protection and Microsoft Purview Information Protection (MIP/DLP)
Leading policy configuration, tuning, and enforcement across the organization
Implementing and maintaining Microsoft Purview, DLP, Information Protection, and compliance policies, plans, and procedures
Developing and tuning DLP rules for endpoints to manage the flow of data between approved boundaries
Managing and optimizing sensitivity labels, mandatory encryption, and content marking across Microsoft 365 and supported third-party integrations
Collaborating with IT and department teams to align DLP policy coverage with regulatory and contractual data handling requirements
Investigating and responding to DLP incidents, working with Defender XDR and Sentinel to correlate events and generate actionable insights
Maintaining DLP dashboards and reporting to track violations, policy effectiveness, and user behavior trends
Serving as the technical liaison for enterprise data protection initiatives involving Purview, Zscaler, Qualys, and related security tools
Supporting periodic policy reviews, risk assessments, and audits, ensuring continuous compliance and alignment with security architecture standards
Documenting DLP processes, SOPs, and configuration baselines in accordance with company change management practices
Providing technical guidance and training to administrators and end-users on data handling best practices
Requirements
Bachelor’s degree in Cybersecurity, Information Systems, or related field (or equivalent experience)
5+ years of experience in information security, with at least 2+ years focused on data protection and DLP engineering
At least one of the following or related certifications:
Microsoft Certified Information Protection Administrator Associate (SC-400)
Microsoft Certified Cybersecurity Architect Expert (SC-100)
Hands-on expertise in Microsoft Purview Information Protection/DLP, Microsoft 365 E5 Security, Defender for Endpoint, Intune app protection, and Entra ID (Azure AD)
Actionable knowledge of data classification standards and compliance frameworks (NIST 800-171, CMMC, ISO 27001, HIPAA)
Strong understanding of DLP rule logic, sensitivity label configuration, and incident response workflows
Experience with KQL queries, Microsoft Sentinel, and automated DLP alert handling through SOAR or ticketing tools (e.g., Jira)
Must be a proactive self-starter with ability to effectively manage timelines for delivery and execution.