Corporate Vice President - Data Protection Engineer

New York Life Insurance Co

3d•Hybrid

About The Position

New York Life is seeking a technically skilled and hands-on Data Protection Engineer with cloud experience to design, implement, and oversee the enterprise’s data protection strategy. This role combines strategic ownership with engineering execution across a broad set of data protection domains, including Data Security Posture Management (DSPM), Data Loss Prevention (DLP), Database Activity Monitoring (DAM), Data Access Governance (DAG), Data Classification, Encryption and Masking, and Key and Secrets Management. The Data Protection Engineer will architect and implement enterprise data protection solutions, lead proof-of-concepts for new and emerging technologies, partner with technology teams, engineering groups, and business stakeholders to ensure controls meet enterprise needs, and oversee specialized sub-domains by managing the DLP Operations Lead, DAM Lead, and other related functions. Experience with major cloud providers is required (e.g., AWS, GCP, Azure). This position is ideal for a senior security engineer or architect with proven leadership ability who enjoys both setting direction and building solutions.

Requirements

8+ years of hands-on experience in information security engineering, with deep expertise across multiple data protection domains (e.g., DSPM, DLP, DAM, encryption)
Proven experience architecting and implementing enterprise-scale data protection solutions
Technical proficiency with tools and platforms such as Netskope, Zscaler, Varonis, Imperva, and database monitoring solutions
Familiarity with cloud-native security controls (AWS, GCP, Azure), data discovery and classification, and secrets management solutions
Experience translating compliance and regulatory requirements into technical architectures
Strong communication and collaboration skills across engineering and business teams
Understanding of Agile development practices and the Scaled Agile Framework (SAFe)
Bachelor’s degree in Cybersecurity, Computer Science, or a related field

Nice To Haves

CISSP, CCSP, GIAC (GDSA, GCDA, GCCC), or equivalent technical certifications

Responsibilities

Define and own the enterprise data protection strategy, with a focus on practical design and implementation.
Architect data protection solutions across DSPM, DLP, DAM, DAG, encryption, and secrets management.
Translate regulatory and business requirements into technical controls and designs.
Align data protection strategy with business use cases, including secure enablement of AI and advanced analytics.
Lead the design, configuration, and integration of data protection technologies across cloud and on-premises environments.
Partner with infrastructure, application, and cloud engineering teams to embed controls into enterprise platforms and workflows.
Oversee rule development, tuning, and testing for DSPM, DLP, DAM, and related protection technologies.
Evaluate new technologies and lead proof-of-concepts to inform architecture decisions.
Manage and mentor technical leads (DLP Operations, DAM, etc.), ensuring cohesive execution across sub-domains.
Serve as the highest escalation point for complex technical data protection challenges.
Define engineering standards, playbooks, and operational processes to support repeatable and sustainable practices.
Foster collaboration with business stakeholders to ensure protection measures support business objectives.
Measure and report on the effectiveness of data protection controls, with a focus on accuracy and minimizing business friction.
Identify and implement automation and integration opportunities to improve efficiency and reduce manual processes.
Stay current with emerging data protection technologies and regulatory requirements to address evolving risks.