IT Security Cloud Data Protection Engineer - FT

About The Position

Requirements

• Bachelor’s degree in computer science, Information Systems, or related field or equivalent combination of education, training, and experience of 8+ years.
• 2+ years of experience developing and designing cloud security with a focus on M365 and Azure.
• Knowledge of cybersecurity frameworks (NIST, CSF 2.0, CIS, ISO 27001-2022).
• Familiarity working with financial regulatory and compliance requirements including NCUA, FFIEC, HIPAA, GLBA, and PCI DSS requirements.
• Oral and written communication skills.
• Member service focus.
• Attention to detail and accuracy.
• Positive attitude that supports a team environment.
• Dependable and punctual; flexible during peak times.
• High level of confidentiality.
• Organizational skills.
• Self-motivated; ability to work without close supervision.
• Problem solving; analysis.

Nice To Haves

• 8+ years of experience working with information security.
• 4+ years of experience configuring and managing Microsoft Purview specifically with data classification, data loss prevention, and insider risk management.
• Prior experience with incident response and case management in cloud environments.
• Certifications: Microsoft 365 Security Administrator or Azure Security Engineer.

Responsibilities

• Serve as the subject matter expert for Microsoft Purview Information Protection (MPIP) suite of tools.
• Design, implement, and maintain MPIP for M365, Azure, and on-premise.
• Develop, document, and enforce MPIP security policies, standards, and best practices for cloud-based resources across the Microsoft tenant (Exchange, SharePoint, OneDrive, Teams, Azure).
• Deploy and configure data classification in Microsoft 365 and Azure to ensure alignment with Veridian’s Data Governance solution Lightbeam.ai.
• Design and deploy MPIP data loss prevention (DLP) that aligns with Veridian’s current standards and on-premise solutions.
• Work collaboratively with the IT Security Analyst and Specialists to monitor, investigate, and respond to policy violations and security alerts related to data handling using Microsoft Purview dashboards and alerts.
• Stay current on emerging threats, vulnerabilities, and security requirements affecting Veridian’s cloud environment.
• Work with cross departmental teams to support business initiatives leveraging M365 and Azure, ensuring security requirements are established and adhered to.
• Evaluate and recommend new security solutions based on emerging threats.
• Collaborate with stakeholders to understand data governance needs and ensure proper information lifecycle management.
• Provide guidance and training to stakeholders on cloud security best practices and data governance requirements.
• Stay up to date with evolving Microsoft security features, compliance regulations, and industry trends.
• On call availability required for system support as needed (including nights and weekends).
• Monitor and provide solutions to IT Security support tickets.