Information Security Engineer - DLP

Job Summary:

We are looking for an experienced and proactive Information Security Engineer Data Loss Prevention (DLP) to join our global security engineering team. This role is responsible for overseeing enterprise-wide data protection efforts, ensuring DLP tools are effectively implemented, monitored, and continually optimized. The ideal candidate brings deep expertise in Microsoft Purview and M365 DLP ecosystems, paired with a practical understanding of enterprise data security needs in a highly regulated, global environment.

Key Responsibilities:

• Serve as the subject matter expert for Data Loss Prevention, with a focus on Microsoft Purview and related Microsoft 365 compliance technologies.
• Oversee the design, implementation, and management of DLP solutions to protect sensitive data across endpoints, emails, and cloud platforms.
• Monitor tool efficacy and drive improvements to detection, reporting, and response workflows across the DLP platform.
• Manage tool lifecycle processes, including capacity planning, maintenance, and upgrades of DLP technologies.
• Collaborate with enterprise architecture, compliance, and infrastructure teams to align DLP efforts with firmwide security strategy.
• Partner with business units to assess needs, ensure policy compliance, and promote data protection awareness.
• Develop metrics, dashboards, and reporting to measure DLP performance and inform stakeholders.
• Stay current on regulatory data protection requirements and evolving cybersecurity threats.

Qualifications:

• Minimum of 5 years of experience implementing and managing enterprise-wide DLP solutions, with a strong emphasis on Microsoft Purview.
• Demonstrated experience with Microsoft 365 security and compliance features, including DLP policies, data classification, and Insider Risk Management.
• Familiarity with Proofpoint DLP and email security technologies is an advantage.
• Strong knowledge of data protection principles, governance frameworks, and security incident response processes.
• Ability to collaborate across diverse, global teams and communicate technical concepts to non-technical stakeholders.

Preferred Certifications (Nice-to-Have):

• Microsoft SC-400: Information Protection Administrator
• Microsoft AZ-500: Azure Security Engineer Associate
• Microsoft MS-900: Fundamentals
• CISSP or equivalent enterprise security certification