Data Security Engineer - VGOV

About The Position

Requirements

• Bachelor's degree or higher in Cyber Security, Information Technology, or a related field, or equivalent experience.
• 6+ years of relevant experience in: Data Security, IT Security, or Information Protection.
• Securing M365 and Azure environments with a focus on security practices.
• Strong knowledge and expertise in implementing data and cloud security principles, frameworks, and best practices.
• Solid understanding of configuring Microsoft Defender for Cloud, Microsoft Intune, JAMF JSS, Azure Security Center, and securing key cloud applications.
• Hands-on experience creating, configuring, and tuning Data Loss Prevention (DLP) rules and policies using endpoint and network solutions (e.g., MS Defender for Endpoint, Netskope, or similar).
• Familiarity with data classification taxonomies, sensitivity labeling models, and secure data transmission protocols.
• Knowledge of identity and access management principles, including integration between Purview, Azure AD, and conditional access controls for enhanced data protection.
• Excellent familiarity with regulatory frameworks such as GDPR, CCPA, and FedRAMP.
• Proficiency in scripting for automation, such as PowerShell or other tools for managing M365 security configurations.
• Strong problem-solving, analytical, and communication skills, with experience collaborating across diverse teams.
• US Citizenship
• Must be able to obtain a United States Secret Clearance
• Travel up to 10%, as needed.

Nice To Haves

• Relevant certifications, such as CISSP, CISM, CISA, or AZ-500: Microsoft Azure Security Technologies certification.
• Experience with Microsoft Purview Information Protection and M365 security and compliance tools, including Exchange Online, SharePoint, OneDrive, Teams, and the Purview compliance portal.
• Experience with advanced cloud security tools and strategies, such as Azure Key Vault, Azure Policy, and Azure Role-Based Access Control (RBAC).
• Knowledge of intellectual property protection strategies and laws.
• Up-to-date knowledge of emerging data security and cloud security trends, threats, and best practices.
• Proficiency in risk management tools and methodologies.
• Strong collaboration skills and the ability to work across cross-functional teams.
• Self-motivation with the ability to manage multiple tasks efficiently and effectively.

Responsibilities

• Develop and manage security measures to ensure the confidentiality, integrity, and availability of sensitive data.
• Implement solutions to address data classification, labeling, sensitivity marking, and support data loss prevention (DLP), ABAC and zero trust.
• Provide policies and guidance to data owners.
• Collaborate with Legal, Privacy, and Security teams to ensure compliance with data contracts, privacy regulations, and security frameworks.
• Configure and manage security controls for M365 services (e.g., Exchange Online, SharePoint, OneDrive, Teams).
• Use tools like Microsoft Defender for Cloud, Purview, Azure Security Center, Intune, and JAMF JSS for endpoint and application security.
• Ensure compliance with GDPR, CCPA, NIST, FedRAMP, and other relevant standards through data security policy enforcement.
• Actively monitor for and respond to suspected security breaches, ensuring timely resolution of incidents.
• Stay informed about emerging security threats and mitigation strategies, adapting the organization’s security posture to align with ever-evolving risks.
• Train and educate internal stakeholders on evolving security policies and standard processes.

Benefits

• range of medical, financial, and/or other benefits, dependent on the position offered
• comprehensive benefit offerings that are focused on your holistic health and wellness