Brooksource is seeking a highly skilled Microsoft Data Protection Engineer to lead the design, implementation, and optimization of data protection strategies within their Microsoft 365 environment. The role involves deploying Microsoft Purview Information Protection capabilities and collaborating with various teams to ensure effective data protection policies are in place.
Responsibilities:
- Architect and deploy Microsoft 365 data protection policies using Microsoft Purview and related tools
- Develop and maintain sensitivity labels, DLP (Data Loss Prevention) policies, and encryption configurations
- Define and enforce data classification and access control standards across the organization
- Monitor policy effectiveness and recommend improvements based on analytics and feedback
- Partner with IT, security, compliance, and business units to align data protection strategies with organizational goals
- Work with third-party vendors and consultants to ensure successful project delivery
- Lead the transition from pilot to production environments, ensuring minimal disruption
- Create user-facing documentation, training materials, and internal communications to support adoption
- Provide knowledge transfer and support to operational teams post-deployment
- Troubleshoot and resolve issues related to data protection configurations
Requirements:
- Hands-on experience with Microsoft Purview Information Protection (MPIP), Microsoft 365 Compliance Center, and related security tools
- Strong understanding of data classification, labeling, encryption, and access control mechanisms
- Proven track record of leading data protection initiatives from design through implementation
- Ability to manage multiple stakeholders and drive consensus across teams
- Excellent verbal and written communication skills
- Comfortable working with both technical and non-technical stakeholders
- Familiarity with regulatory frameworks (e.g., GDPR, HIPAA, CCPA) and data governance best practices
- Background in security architecture or engineering is a strong plus
- Microsoft certifications such as SC-400, MS-500, or AZ-500
- Experience with automation and scripting (e.g., PowerShell) for policy deployment and reporting
- Exposure to broader Microsoft security ecosystem (Defender, Sentinel, Entra ID)