MS Purview Consultant

About The Position

Requirements

• Bachelor’s degree or higher in information security, information assurance, cybersecurity, or related field
• Minimum 5 years working in data security or cybersecurity
• Minimum 3 years of experience in configuring and implementation MS Purview data security stack i.e. DLP, Data classification, Insider Risk Management and Data Discovery, and alert analytics
• Strong understanding of the data lifecycle and associated data security methodologies (NIST 800-53)
• Excellent communication and consulting skills
• Ability to collaborate with and manage client stakeholders in business and technical groups at various levels of seniority
• Demonstrated understanding of Data Security concepts and principles

Nice To Haves

• Familiarity with Microsoft Azure platform, O365, Azure AD environment and MS collaboration tools
• Cybersecurity certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), MP Purview SC-401 or MS-500

Responsibilities

• Function as a technical consultant with hands-on experience in implementation of MS Purview DLP (Data Loss Prevention) for endpoint and email, MPIP (Microsoft Purview Information Protection) and IRM (Insider Risk Management) solutions.
• Collaborate with the client stakeholders to identify and define DLP and IRM use cases.
• Ability to lead DLP, IRM and MPIP use case interviews and meetings with business and IT owners (VP level or above)
• Configure and enable DLP, IRM and MPIP features, functionalities, policies, rules, and analytics.
• Work with client stakeholders to identify false positives and benign user activity to establish a baseline of what “normal” looks like
• Apply advanced data detection methods such as EDM, Regex based, fingerprinting, patter matching etc. to fine tune noisy policies and reduce false positives
• Configure user driven and automated MPIP labels for the MS eco-system and related collaboration platforms such as SharePoint, OneDrive and Exchange
• Configure and run DLP discovery scans on supported MS data platforms
• Develop KPIs, KRIs and other metrics to measure the successful adoption of the Data Security program
• Support integration of DLP events and alerts into the SIEM platform
• Ability to work in a large cyber team, collaborating with various cyber pillar leads and with global teams that are offshore to deliver the project
• Assist in development of project documentation such as RACI, Operational run books, architecture diagrams, requirements and use cases documents, gap analysis etc.
• Assist in development and implementation of DLP alert management and triage processes, incident escalation and data remediation processes
• Research and produce strategic data security content focused on industry-level and geographically aligned relevant data security threats and data privacy laws.
• Work with Accenture’s global Data Security teams to identify opportunities for workshops, briefs, and presentations relevant to assigned clients.
• Assist with responding to and scoping client requests for information (RFIs).
• When required, travel to the client’s onsite facility for meetings, training, or other events that require in-person availability.
• Champion Accenture Security products and services with the client and identify opportunities for expansion.