Data Security Engineer

About The Position

Requirements

• 4–7+ years of experience in data security, DLP, or related cybersecurity roles.
• Hands-on experience with DLP technologies (preferably Cyberhaven or similar tools).
• Experience implementing or working with DSPM solutions.
• Strong understanding of data classification, data lifecycle, and data protection strategies.
• Experience in cloud and SaaS environments (e.g., AWS, Azure, GCP, Office365, Google Workspace).
• Experience with security tool integration (SIEM, APIs, automation tools).
• Scripting or automation experience (e.g., Python, PowerShell, or similar).
• Strong analytical and troubleshooting skills with a focus on root cause analysis.
• Has a good understanding of security concepts and interested in further developing security skills.
• Has an automation mindset.
• Capable of working in a fast-paced environment, adapting to changing priorities.
• Self-starter with an appreciation for technical challenges and complex problems.
• Focused and detail-oriented.
• Able to work independently and as part of a multidiscipline team.

Nice To Haves

• Familiarity with identity platforms (e.g., Okta) and basic IAM concepts.
• Experience with cloud email DLP (Office365, Google Workspace).
• Knowledge of DSPM best practices and frameworks.
• Understanding of compliance frameworks (PCI-DSS, HIPAA, GDPR, SOC 2).
• Relevant certifications (e.g., CISSP, CISM, or similar).

Responsibilities

• Enhance and mature the organization’s DLP program, improving coverage, accuracy, and effectiveness.
• Develop and fine-tune DLP policies to monitor and protect data in-use, in-transit, and at-rest.
• Configure and optimize DLP tools to reduce false positives and improve detection fidelity.
• Build and maintain incident response workflows for DLP alerts and data policy violations.
• Partner with SOC and other teams to investigate and respond to data security incidents.
• Define metrics, dashboards, and reporting to track DLP program effectiveness and maturity.
• Lead or support the implementation of DSPM solutions across cloud and SaaS environments.
• Identify, classify, and map sensitive data across systems (structured and unstructured).
• Establish data inventory and data flow visibility to understand how sensitive data moves across the organization.
• Continuously assess and reduce data exposure risks (over-permissioned data, shadow data, unused sensitive data).
• Integrate DSPM insights into DLP controls and broader security operations.
• Design and implement scalable data protection architectures across SaaS, cloud, and endpoint environments.
• Integrate DLP and DSPM tools with SIEM/SOAR platforms for automated detection and response.
• Develop scripts or automation to improve policy enforcement, alert triage, and reporting.
• Troubleshoot and resolve issues related to performance, reliability, and coverage of data security tools.
• Support compliance initiatives such as PCI-DSS, SOC 2, GDPR, and other data protection standards.
• Assist in defining and maintaining data protection policies, standards, and procedures.
• Provide audit support and documentation for internal and external security assessments.
• Act as a subject matter expert (SME) for data security and data protection best practices.
• Work with engineering, product, legal, and business teams to ensure secure handling of sensitive data.
• Provide guidance, training, and awareness on data protection best practices.
• Promote a security-first and automation-driven mindset across teams.