×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

Lead Data Loss Prevention; DLP Security Engineer

Job in Arlington, Arlington County, Virginia, 22201, USA
Listing for: CoStar Group
Full Time position
Listed on 2026-01-01
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Lead Data Loss Prevention (DLP) Security Engineer

Lead Data Loss Prevention (DLP) Security Engineer

Job Description

Overview

CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world’s real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives. We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers.

We’ve continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors. We continue that effort today and are always working to improve and drive innovation. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate.

Responsibilities
  • Own the enterprise DLP architecture and roadmap using Microsoft Purview across Exchange Online, SharePoint Online, One Drive, Teams, Power BI, and Endpoint DLP on managed devices.
  • Design and implement data classification and labeling at scale (sensitivity labels, automatic/manual labeling, protection actions) aligned to the organization’s data taxonomy.
  • Build, test, and tune DLP policies for high-risk exfiltration vectors (email, cloud storage, chat, web uploads, endpoints: removable media, print, clipboard, Bluetooth, RDP, browser downloads).
  • Stand up and mature advanced classifiers and detections (Sensitive Information Types, Exact Data Match schemas, trainable classifiers) with continuous improvement cycles.
  • Integrate DLP with incident management and SOC workflows (alert triage, case management, evidence capture, automation) and with SIEM (e.g., Microsoft Sentinel) using KQL analytics.
  • Partner with Identity, Endpoint, and Collaboration teams to enforce device/user trust prerequisites, and with Compliance/Legal on retention, eDiscovery, and privacy‑by‑design.
  • Create enablement content: policy tips, just‑in‑time guidance, and training for end users and privileged administrators to reduce friction and false positives.
  • Establish exception and change management processes, including time‑bound exceptions with compensating controls and periodic recertification.
  • Publish dashboards and KPIs to leadership (coverage, alert volumes, true‑positive rates, MTTR, prevented exfiltration, policy drift).
  • Mentor junior engineers and act as the primary subject‑matter expert for Microsoft Purview DLP.
Basic Qualifications
  • Bachelor’s Degree required from an accredited, not for profit university or college.
  • A track record of commitment to prior employers.
  • 8 years in information security with 3-5 years focused on enterprise DLP.
  • Hands‑on expertise deploying and operating Microsoft Purview Information Protection & DLP at 5k user scale, including Endpoint DLP and M365 workloads.
  • Practical experience with sensitivity labels, automatic and manual labeling, Sensitive Information Types, Exact Data Match (EDM), and trainable classifiers.
  • Proficiency with Kusto Query Language (KQL), Power Shell, and API/automation for policy management and reporting.
  • Experience integrating DLP with SIEM/SOAR, SOC runbooks, and incident/alert handling processes.
  • Strong stakeholder skills: partnering with Legal/Privacy, HR, Compliance, and business units; clear documentation and change management.
  • Working knowledge of data governance and regulatory drivers (e.g., SOX ITGC, PCI, HIPAA, GDPR/CCPA) as they relate to DLP and monitoring.
Preferred Qualifications and Skills
  • Track record accelerating a Microsoft Purview rollout from pilot to enterprise adoption, with measurable risk reduction.
  • Experience with Defender for Cloud Apps integration, Defender XDR signal correlation, and Endpoint platform integrations (Intune, Windows, Mac).
  • Knowledge of Microsoft Information Protection (MIP) SDK, Power Automate, or Graph APIs to extend labeling and DLP workflows.
  • Ce…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search