Information Security Engineer Sr - Data Loss Prevention; DLP
Listed on 2026-07-13
-
IT/Tech
Cybersecurity, Information Security, Data Security
Job Number: 178499,
Job Title:
Information Security Engineer Sr - Data Loss Prevention (DLP), Salary: $ - $
The Senior Information Security Engineer supports the organization's cybersecurity efforts by assisting with security projects, access control, and continuous monitoring of the IT environment. This role plays a key part in incident response, auditing, and threat detection, while also maintaining up-to-date documentation and supporting compliance initiatives. The analyst collaborates across departments, resolves help desk tickets, and contributes to the development of a secure infrastructure.
Through ongoing training and professional development, the analyst ensures alignment with evolving security standards and best practices.
- Bachelor of Science in Information Technology or related field AND five (5) years work experience related to industry (clinical or business).
- High school diploma or GED AND nine (9) years work experience related to industry (clinical or business).
- Security+ OR Cisco security certifications, GIAC OR CISSP upon hire or one of these must be obtained within 6 months of accepting position.
- Four (4) years work experience in a security and compliance role. Ability to evaluate and review a range of information systems and applications including Windows, Unix, IBM, and Cisco.
Typical duties may include:
- Configuring & Managing DLP Solution
- Develop, test, and deploy DLP policies and rules based on business, regulatory (HIPAA, PCI, etc.), and compliance requirements.
- Actively monitor the Microsoft Purview compliance portal for alerts and events, including investigating, triaging, and responding to DLP incidents.
- Analyze, review, and fine‑tune DLP rules to improve accuracy, reduce false positives, and minimize disruptions to legitimate business workflows.
- Onboard and configure endpoint devices to prevent data loss (e.g., restricting data copying to USB drives, printing, or uploading to personal cloud storage) via Microsoft Intune or Defender for Endpoint.
- Work with vendors to upgrade, patch, and maintain DLP infrastructure, including agent deployment and management consoles.
- Understand LLMs and the importance of DLP to safeguard data from getting compromised.
- Incident Response
- Respond to incidents in case sensitive data gets exfiltrated or compromised.
- Familiarity with IR processes pertaining to DLP, forensic techniques, and security event escalation workflows.
- Insider Threat
- Configure & maintain an Insider Threat framework in MS Purview.
- Train and collaborate with the SOC team to monitor Insider Threat logs.
The candidate should be able to work in a hybrid model and be ready to come to office when needed.
Required Qualifications & Skills- Bachelor's degree in Cybersecurity/IT or equivalent experience.
- 2-4+ years of experience with DLP, ideally with MS Purview.
- Hands‑on experience with M365 ecosystem.
- SC-401 and/or SC-200 certified OR equivalent experience in MS Purview.
- Strong analytical and communication skills.
- Team-oriented with a positive and professional approach.
- Expertise in MS Purview especially with Data Loss Prevention, Information Protection, Sensitivity Labels, Insider Risk Management, Audit, and eDiscovery.
- Entra (Azure AD) knowledge, Conditional Access, RBAC, MFA, and PIM.
- Familiarity with Microsoft Defender suite (Endpoint, Identity, Cloud Apps) and SIEM/SOAR platforms.
- Understanding data classification, PII/PHI/PCI data, and common exfiltration methods (email, web, cloud).
- Knowledge of GDPR, HIPAA, CCPA, PCI‑DSS.
- Strong analytical and communication skills.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).