Data Protection Specialist - Expert

About The Position

Requirements

• 5 years related work experience
• Hands‑on experience designing and managing Microsoft Purview in a production enterprise environment
• Experience implementing and managing: Sensitivity labels and encryption DLP policies across cloud, endpoint, and SaaS applications Retention and records management policies Insider Risk Management and alert investigations eDiscovery (Standard and/or Premium) and audit logging

Nice To Haves

• Proficiency with PowerShell for automation and reporting
• Experience in highly regulated industries (e.g., healthcare, financial services, government)
• Experience integrating Purview with third‑party security or governance tools
• Prior ownership of enterprise DLP or information protection programs
• Experience implementing and managing DSPM for AI
• 10 years related work experience to be considered in lieu of degree.
• Familiarity with MITRE ATT&CK, TTPs (Tactics, Techniques, and Procedures), and advanced persistent threats (APTs).
• Expertise in securing Azure, AWS, and hybrid environments, including identity and access management
• Understanding forensic methodologies, malware analysis, and chain-of-custody principles.
• CISSP - Certified Information Systems Security Professional - ISC2
• CISSP (Certified Information Systems Security Professional)
• CISM - Certified Information Security Manager - Information Systems Audit and Control Association
• CISM (Certified Information Security Manager)

Responsibilities

• Microsoft Purview Strategy & Implementation Design, implement, and manage Microsoft Purview capabilities, including: Microsoft Information Protection (MIP) – sensitivity labels, label policies, auto‑labeling, encryption, and rights management Data Loss Prevention (DLP) – policies for email, SharePoint, OneDrive, Teams, endpoints, and third‑party applications Data Lifecycle Management & Records Management – retention labels, retention policies, and defensible disposal Insider Risk Management – risk indicators, policies, alerts, and investigation workflows eDiscovery & Audit – content searches, legal holds, audit log investigations, and evidence collection
• Integrate Purview controls across Microsoft 365 workloads including Exchange Online, SharePoint Online, OneDrive, Teams, Defender, and hybrid environments where applicable
• Serve as the technical subject‑matter expert and platform owner for Microsoft Purview
• Data Classification & Governance Develop and maintain an enterprise data classification framework aligned with business needs and regulatory requirements
• Partner with business units to identify and protect sensitive data such as PII, PHI, financial data, and intellectual property
• Implement scalable data discovery using built‑in classifiers, trainable classifiers, and auto-classification policies
• Ensure data protection controls are effective while maintaining usability and business productivity
• Generative AI and Agentic AI Governance Compliance, Risk & Incident Response Translate regulatory requirements (GDPR, HIPAA, HITRUST and industry‑specific regulations) into enforceable technical controls
• Monitor compliance posture using Microsoft Compliance Manager and recommend remediation actions
• Investigate and respond to DLP incidents, insider risk alerts, and policy violations
• Support internal and external audits by producing audit logs, reports, and compliance evidence
• Collaborate with Legal, Compliance, HR, and Security teams during investigations and regulatory inquiries
• Automation & Operational Excellence Use PowerShell to automate Purview configuration, reporting, and operational tasks
• Continuously tune and improve policies to reduce false positives and improve signal quality
• Develop documentation, runbooks, and operational procedures to support ongoing governance and incident response