Microsoft Purview and Data Protection Engineer

Booz Allen HamiltonUsa, DC

About The Position

As a Microsoft Purview Data Protection Engineer, you will design, implement, and automate enterprise data-protection capabilities that safely govern sensitive information across Microsoft 365 IL5 and IL6 Flank Speed environments. You will design, implement, and optimize enterprise information-protection, DLP, insider risk, and lifecycle-governance controls across Microsoft 365. You will partner with Navy mission stakeholders, cybersecurity teams, records managers, and cloud engineering teams to translate policy into technical enforcement mechanisms. You will recommend tools, automations, and governance approaches based on your deep experience with Microsoft Purview, Entra ID, and IL5 or IL6 GovCloud requirements. Your expertise will be vital as you build custom Sensitive Information Types (SITs), engineer retention and records-management policies, create insider-risk detection controls, design label-driven encryption, and implement DLP safeguards across endpoints and collaboration platforms. You will strengthen your skills in automation, Purview compliance engineering, advanced audit or eDiscovery, and Microsoft Entra Conditional Access and identity governance, while mentoring tomorrow’s cloud-security experts. Help us transform and secure our nation’s warfighters with cloud technology and advanced Zero Trust capabilities.

Requirements

  • 10+ years of experience in enterprise information protection, data governance, or cloud security with Microsoft 365 or Purview
  • 10+ years of experience with the DoD, including the U.S. Navy
  • Experience designing and deploying sensitivity labels, SITs or EDM, and DLP across M365 workloads and endpoints
  • Experience with retention or records, eDiscovery, audit, and insider risk in regulated environments
  • Knowledge of Microsoft Entra ID, RBAC, and Conditional Access
  • Knowledge of eDiscovery, legal holds, advanced search, and audit log investigations
  • Top Secret clearance
  • Bachelor's degree
  • Security+ DoD 8570-compliant Certification

Nice To Haves

  • Experience with PowerShell for configuration, reporting, and automation beyond GUI capabilities
  • Experience building or managing the Microsoft Purview Data Map and scanning multi-cloud or on-prem sources
  • Experience governing generative AI with Purview controls, including restricted access, label-driven policies, and data boundary
  • Microsoft Certifications such as SC-400, SC-200, SC-100, MS-101, and AZ-50
  • Certifications

Responsibilities

  • Design, implement, and automate enterprise data-protection capabilities.
  • Safely govern sensitive information across Microsoft 365 IL5 and IL6 Flank Speed environments.
  • Design, implement, and optimize enterprise information-protection, DLP, insider risk, and lifecycle-governance controls across Microsoft 365.
  • Partner with Navy mission stakeholders, cybersecurity teams, records managers, and cloud engineering teams to translate policy into technical enforcement mechanisms.
  • Recommend tools, automations, and governance approaches based on deep experience with Microsoft Purview, Entra ID, and IL5 or IL6 GovCloud requirements.
  • Build custom Sensitive Information Types (SITs).
  • Engineer retention and records-management policies.
  • Create insider-risk detection controls.
  • Design label-driven encryption.
  • Implement DLP safeguards across endpoints and collaboration platforms.
  • Strengthen skills in automation, Purview compliance engineering, advanced audit or eDiscovery, and Microsoft Entra Conditional Access and identity governance.
  • Mentor tomorrow’s cloud-security experts.

Benefits

  • health, life, disability, financial, and retirement benefits
  • paid leave
  • professional development
  • tuition assistance
  • work-life programs
  • dependent care
  • recognition awards program
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service