Security Engineer III ~ Data Loss Prevention

Capital Group•San Antonio, NY

2h•$116,447 - $240,248

About The Position

As a Security Engineer III in Data Loss Prevention, you’ll take the lead in deploying, managing, and fine-tuning data loss prevention (DLP) and data protection tools across our enterprise systems. Your mission is to keep sensitive information safe by implementing strong technical controls, optimizing DLP policies to cut down false positives, and ensuring compliance with regulations like GDPR and HIPAA. You’ll dive into threat modeling, fix vulnerabilities, and automate security configurations using scripting and infrastructure-as-code tools. A solid background in cloud, network, and application security is key, along with hands-on experience with DLP platforms such as Symantec, Microsoft Purview, or Zscaler. This role gives you autonomy while working closely with IT, DevOps, and compliance teams to embed security into everyday workflows. You’ll also mentor junior engineers, support incident response, and translate technical risks into clear, actionable guidance for stakeholders.

Requirements

Minimum 3-5 years in data protection or in Information Security
A Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent work experience).
Demonstrated proficiency with DLP tools and technologies such as Symantec, Microsoft, Zscaler, or Palo Alto DLP platforms.
In-depth knowledge of data protection methods, including encryption (for data at rest and in transit), data masking, and tokenization techniques.
Strong understanding of data privacy regulations and compliance standards (e.g., GDPR, HIPAA, CCPA).
Experienced with data classification frameworks and applying controls based on data sensitivity.

Responsibilities

Deploying, configuring, and maintaining enterprise Data Loss Prevention (DLP) platforms to safeguard sensitive information across cloud, web, endpoint, and email channels.
Creating and tuning DLP policies to detect and prevent unauthorized data exfiltration.
Automating security controls using scripting and infrastructure-as-code, ensuring alignment with regulatory and internal standards.
Ensuring the health and operational stability of the DLP platform by monitoring performance, troubleshooting issues, and executing standard operational procedures to maintain reliability and effectiveness.
Supporting incident response efforts and collaborate closely with incident response and threat detection teams to continuously improve DLP operations.
Tuning policies based on real-world detection patterns, enrich alert workflows with contextual data, and refine playbooks to reduce false positives.

Benefits

competitive salary, bonuses and benefits
company-funded retirement contribution will factor in salary and variable pay, including bonuses
generous time-away and health benefits from day one, with the opportunity for flexible work options
2-for-1 matching gifts for your charitable contributions and the opportunity to secure annual grants for the organizations you love
Access on-demand professional development resources that allow you to hone existing skills and learn new ones
eligible for an individual annual performance bonus, plus Capital’s annual profitability bonus plus a retirement plan where Capital contributes 15% of your eligible earnings

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume