Information Security Engineer, Senior - Data Protection

Blue Shield of California•San Diego, CA

13h

About The Position

The Data Protection team leads data security operations at Stellarus. The Senior Data Protection Engineer will report to the Sr. Manager of Data Protection. In this role you will design, implement, and operate enterprise data protection controls that safeguard sensitive information across email, web, endpoints, cloud platforms, and collaboration tools. This role partners closely with security operations, engineering, privacy, and compliance teams to reduce data risk while enabling the business to operate securely at scale. Our leadership model is about developing great leaders at all levels and creating opportunities for our people to grow – personally, professionally, and financially. We are looking for leaders that are energized by creative and critical thinking, building and sustaining high-performing teams, getting results the right way, and fostering continuous learning.

Requirements

Requires a college degree or equivalent experience and minimum 5 years of prior relevant experience
Strong experience in data protection, DLP, or information security engineering
Hands-on expertise with email and web DLP, data classification, and encryption controls
Experience operating security tooling in cloud and SaaS environments
Hands on experience deploying, configuring, operationalizing, and maintaining DSPM tools
Scripting and Coding hands on experience (APIs, SQL, Python, Regex, Powershell)
Ability to translate risk findings into practical, scalable remediation
Strong documentation, collaboration, and communication skills

Responsibilities

Design, deploy, and operate DLP controls across email, web, endpoints, and collaboration platforms.
Tune policies to reduce false positives, manage alerting into SIEM platforms, and maintain clear operational runbooks.
Support secure email and messaging through enterprise email security and DLP controls (e.g., Proofpoint).
Operationalize the enterprise data classification model into enforceable labeling and protection controls.
Configure and maintain data labeling and DLP policies within Microsoft Purview.
Partner with data owners to validate classifications and drive consistent adoption.
Operate data discovery and DSPM tooling to identify sensitive data, exposure risks, and control gaps.
Translate findings into prioritized remediation actions and track issues to closure.
Implement and govern encryption for data at rest, in transit, and in use.
Support cloud encryption patterns, key management workflows, and access controls aligned to enterprise standards.
Monitor data protection events and generate metrics, audit evidence, and compliance artifacts.
Partner with SOC and incident response teams on triage, containment, root cause analysis, and continuous improvement.
Use automation and scripting to improve policy deployment, labeling hygiene, and alert triage efficiency.
Document architectures, operational procedures, and scalable support models.