Data Protection Engineer

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
• 8+ years of experience in DLP engineering.
• Strong, hands-on experience with Microsoft Purview (Data Loss Prevention and Information Protection) and Microsoft Defender.
• Strong knowledge of encryption, data classification, network security, endpoint protection, and cloud security principles.
• Solid understanding of regular expression and regex-based pattern matching.
• Experience with enterprise support request and trouble ticketing solutions, such as ServiceNow and Jira.
• Familiar with support process implementation and improvement.
• Understanding data protection laws, compliance frameworks, and industry best practices.
• Strong problem-solving and analytical skills with attention to detail.
• Ability to work independently and collaboratively in a fast-paced environment.
• Self-starter with strong interpersonal, written and verbal communication skills and the ability to interact with technical and non-technical stakeholders.

Nice To Haves

• Experience with Microsoft Defender for Cloud and/or Netskope is a plus.
• Scripting (e.g., Python and PowerShell) and automation skills are a plus.
• CISSP, CISA, CEH, CCSP, or Microsoft Certified preferred

Responsibilities

• Design, deploy, configure, and maintain data protection solutions across endpoints, networks, cloud services, email systems, and collaboration platforms.
• Customize and fine-tune data protection policies, rules, and classifiers.
• Define and maintain data classification schemes and sensitivity labels.
• Fine-tune data protection policies, rules and detection algorithms to minimize false positives.
• Define and refine data classification labels, configurations and control parameters.
• Ability to troubleshoot sensitivity label issues with end users.
• Develop automated workflows to enhance data security and reduce manual intervention.
• Monitor and triage data protection alerts and incidents.
• Implement and operate DSPM controls, data discovery, posture assessments, and exposure remediation.
• Documentation of systems designs, configurations and support processes including, but not limited to, creating/maintaining conceptual, logic and system diagrams, standard operating procedures and playbooks, and configuration guides.
• Ensure data protection policies align with company and regulatory requirements, as well as industry regulations (e.g., GLBA, CCPA, NYDFS)
• Work closely with compliance and legal teams to enforce data protection requirements.
• Provide technical guidance on emerging threats and data security trends.
• Support data flow mapping, risk assessments, and remediation efforts.
• Participate in architecture reviews and change management activities.
• Stay current on data security trends and technologies.
• Integrate data protection platforms with SIEM and IAM systems.
• Perform other duties as assigned.

Benefits

• The annual salary for this role ranges between $130-175K depending on the individual’s experience.
• Role can be 100% fully remote depending on geographic location