Staff Data Security Engineer
Missouri, United States of America
Full Time
2 hours ago
$126,710 - $188,840 USD
No Visa Sponsorship
Key skills
Cloud
About this role
Role Overview
- Drive the design and implementation of enterprise data protection capabilities across Microsoft 365, endpoints, and cloud platforms
- Protect sensitive data across its full lifecycle
- Discover, classify, and secure data while reducing enterprise risk
- Work across multiple technologies and teams to ensure data security controls are scalable
- Collaborate with IT, Legal, Compliance, and business stakeholders to ensure sensitive data is identified, classified, and protected
- Design, deploy, and tune DLP policies across Microsoft Purview DLP
- Configure and manage labeling policies, trainable classifiers, and exact data match for sensitive data types
- Integrate DLP capabilities with the Defender suite
- Monitor DLP incidents, conduct root-cause analysis, and drive policy refinement
- Partner with data owners across business units to ensure proper classification of structured and unstructured data assets
Requirements
- Bachelor’s degree in arts/sciences (BA/BS) or equivalent experience
- 6+ years of experience in information security, with at least 4 years focused on data security, DLP or DSPM
- Hands-on expertise with Microsoft Purview DLP, including policy creation, scoped deployments, adaptive protection, and incident management
- Strong proficiency with Microsoft Defender XDR suite: Defender for Endpoint, Defender for Cloud Apps, Defender for Identity, and Defender for Office 365
- Demonstrated experience with Microsoft Sentinel, including custom analytic rules, KQL query development, workbooks, and SOAR playbooks
- Experience with Varonis Data Security Platform for data access governance
- Familiarity with DSPM concepts and tooling
- Solid understanding of data classification frameworks and Microsoft Purview Information Protection
- Experience implementing DLP across multiple vectors: email, endpoint, cloud applications, and network
- Knowledge of relevant compliance frameworks and regulations: ISO 27001/27701, SOC 2 and NIST-aligned compliance and security frameworks
- Proven experience with email authentication standards (DMARC, SPF, DKIM) and their implementation in Microsoft 365.
Tech Stack
- Cloud
Benefits
- health insurance
- retirement plans
- annual bonus plan
- long-term equity incentive plan