Security Engineer ~ Data Loss Prevention

Security Engineer III – Data Loss Prevention

As a Security Engineer III in Data Loss Prevention, you’ll take the lead in deploying, managing, and fine‑tuning data loss prevention (DLP) and data protection tools across our enterprise systems. Your mission is to keep sensitive information safe by implementing strong technical controls, optimizing DLP policies to reduce false positives, and ensuring compliance with regulations such as GDPR, HIPAA, and CCPA.

You will dive into threat modeling, fix vulnerabilities, and automate security configurations using scripting and infrastructure‑as‑code tools. A solid background in cloud, network, and application security is key, along with hands‑on experience with DLP platforms such as Symantec, Microsoft Purview, Zscaler, or Palo Alto.

This role provides autonomy while working closely with IT, Dev Ops, and compliance teams to embed security into everyday workflows. You’ll mentor junior engineers, support incident response, and translate technical risks into clear, actionable guidance for stakeholders.

• Deploy, configure, and maintain enterprise DLP platforms to safeguard sensitive information across cloud, web, endpoint, and email channels.
• Create and tune DLP policies to detect and prevent unauthorized data exfiltration.
• Automate security controls using scripting and infrastructure‑as‑code, ensuring alignment with regulatory and internal standards.
• Monitor platform performance, troubleshoot issues, and execute standard operational procedures to maintain reliability and effectiveness.
• Support incident response efforts and collaborate closely with incident response and threat detection teams to continuously improve DLP operations.
• Tune policies based on real‑world detection patterns, enrich alert workflows with contextual data, and refine playbooks to reduce false positives.

• Minimum 3–5 years in data protection or information security.
• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
• Proficiency with DLP tools such as Symantec, Microsoft Purview, Zscaler, or Palo Alto.
• In‑depth knowledge of data protection methods, including encryption, data masking, and tokenization.
• Strong understanding of data privacy regulations and compliance standards (e.g., GDPR, HIPAA, CCPA).
• Experience with data classification frameworks and applying controls based on data sensitivity.

• Generous time‑away and health benefits from day one, with flexible work options.
• 2‑for‑1 matching gifts for charitable contributions and annual grants for volunteer organizations.
• On‑demand professional development resources.
• Competitive base salary:
  • Charlotte: $121,554 – $194,486
  • Southern California: $141,648 – $226,637
  • New York: $150,155 – $240,248
• Individual annual performance bonus and company profitability bonus.
• Retirement plan with 15% company contribution on eligible earnings.

We are an equal opportunity employer, complying with all federal, state, and local laws that prohibit discrimination. Our policies prohibit unlawful discrimination on the basis of race, religion, color, national origin, ancestry, sex (including gender and gender identity), pregnancy, childbirth and related medical conditions, age, physical or mental disability, medical condition, genetic information, marital status, sexual orientation, citizenship status, AIDS/HIV status, political activities or affiliations, military or veteran status, status as a victim of domestic violence, assault or stalking, or any other characteristic protected by law.