IP-Plus Consulting, Inc.Remote
CYBERSECURITY ENGINEER - Data Loss Prevention
United States of America
Full Time
1 day ago
No H1B
Key skills
Microsoft Purview DLPForcepoint DLPAzure IL4+SharePoint OnlineOneDriveSTIG hardeningDISA Secure Technical Implementation GuidesDoD IA complianceDoD 8570/8140 IAT Level II certificationSecurity+ CECySA+CASP+CNDSP-IS certificationGCIHGCIACISSPDoD change management processesECR documentationPPSM documentationLCA documentationSC-401 Microsoft Information Protection AdministratorForcepoint DLP AdministratorProofpoint Certified DLP SpecialistSQLAzureLeadershipChange ManagementCloud Security
About this role
iP-Plus Consulting, Inc. is a mission-focused technology and cybersecurity services firm supporting Federal agencies. They are seeking a Cybersecurity Engineer to support a federal program, responsible for designing and maintaining Data Loss Prevention solutions in a hybrid DoD cloud environment.
Responsibilities:
- Design, configure, and tune Microsoft Purview and Forcepoint DLP policies, rulesets, and workflows across an enterprise DoD environment
- Provide Tier 3 engineering support for DLP infrastructure including fault isolation, root cause analysis, and incident remediation
- Support the integration of DLP solutions with the broader IT infrastructure including M365, Azure IL4+, SharePoint Online, OneDrive, and Teams
- Perform STIG hardening and maintain configuration compliance across all DLP components in accordance with DISA Secure Technical Implementation Guides
- Assist with data-at-rest scanning operations, false positive reduction, and ongoing performance tuning of DLP platforms
- Manage and execute software updates, firmware patches, and service packs in compliance with DoD IA directives and agency change management processes
- Support the development and submission of required documentation including ECR forms, PPSM forms, LCA forms, and Information Assurance packages
- Participate in scheduled on-call rotation supporting critical DLP infrastructure and incident response activities
- Develop and maintain operational documentation including SOPs, CONOPS, troubleshooting guides, and training materials
- Support remediation workflow automation efforts and assist with Authorization to Operate (ATO) documentation for DoD IL4+ environments
- Coordinate with agency stakeholders including privacy, incident response, vulnerability management, and Information Assurance personnel
- Generate operational status reports for agency leadership and DoD reporting requirements as required
- Ensure all DLP systems maintain compliance with federal data protection standards, DoD IA policies, and applicable regulatory requirements
Requirements:
- Minimum seven (7) years of relevant IT and cybersecurity experience
- Active DoD Secret clearance with eligibility for IT-I Critical Sensitive / Tier 5 (T5) investigation
- DoD 8570/8140 IAT Level II certification (Security+ CE, CySA+, CASP+, or equivalent)
- CNDSP-IS certification or equivalent (CySA+, CASP+, GCIH, GCIA, or CISSP)
- Computing Environment (CE) certification and/or hands-on administration experience supporting enterprise DLP platforms
- Hands-on experience implementing and administering Microsoft Purview DLP and/or enterprise DLP platforms within a large-scale environment
- Familiarity with DoD cloud environments including Azure IL4+ and M365 security architecture
- Experience working within DoD change management processes including ECR, PPSM, and LCA documentation
- Strong working knowledge of DISA STIGs and federal IA compliance frameworks
- Candidates must meet DoD 8570/8140 certification requirements prior to start date and maintain certifications for the duration of the contract
- Candidates must possess at least one of the following certifications: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, SSCP, CND
- Candidates must possess at least one of the following certifications: CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, CND
- Candidates must possess hands-on experience and/or certification supporting enterprise Data Loss Prevention (DLP) platforms
- Hands-on experience with Forcepoint DLP administration and policy engineering
- Experience supporting cybersecurity operations within DoD, federal, or regulated enterprise environments
- Experience with DLP remediation workflow automation in a DoD IL4 or higher environment
- Prior work experience within a DoD Component IT environment
- Microsoft certifications including SC-400, AZ-500, or SC-100
- Familiarity with SQL database environments and application-level troubleshooting
- Experience supporting ATO packages in DoD cloud environments
- Experience supporting enterprise cloud security initiatives within Microsoft GCC High or DoD IL4+ environments
- Background with adjacent DLP platforms such as Symantec DLP, Trellix, Digital Guardian, or Broadcom DLP