Senior Cyber Security Engineer

Genesis
10 is seeking a Senior Cybersecurity Engineer for a 12-month contract position with a client located in the Milwaukee, WI area. This role is hybrid with 3 days a week onsite.

Genesis
10 is seeking a Senior Cybersecurity Engineer to design, build, and operationalize enterprise-grade data protection capabilities anchored in Microsoft E5. This role will lead engineering efforts for Microsoft Purview (Information Protection, DLP, eDiscovery/Audit), Sensitivity Labels, and secure-by-default guardrails, integrating enforcement and telemetry across Zscaler, Crowd Strike, and Splunk.

This position supports a high-impact initiative focused on Insider Risk detection and data protection for regulated data (PII/PHI), while accelerating Copilot and Microsoft E5 controls adoption across SaaS and AI workloads.

Pay Rate: $50.00 - $58.00 per hour.

• Engineer Secure-by-Default E5 Data Protection
• Design and implement Microsoft Purview DLP policies across endpoints, Exchange, SharePoint, One Drive, and Teams.
• Define and manage Sensitivity Label taxonomy with automated enforcement paths.
• Build policy-as-code CI/CD pipelines to version, test, and deploy DLP rules, label configurations, and governance artifacts across environments.
• Integrate Security Tooling (Zscaler, Crowd Strike, Splunk)
• Integrate Zscaler SSE inspection with Purview controls and route telemetry to Splunk for analytics and detections.
• Leverage Crowd Strike telemetry (Falcon/Shield) to correlate endpoint behavior with data movement signals for insider risk and exfiltration use cases.
• Develop Splunk dashboards, data models, and correlation searches aligned to data loss and anomalous access scenarios.
• Build Automation & Guardrails
• Develop automation using Azure Functions, Logic Apps, Graph API, and Power Shell to remediate mislabels, revoke risky shares, and notify data owners.
• Implement secure-by-default configuration baselines and drift detection for E5 security controls, including MCAS/Defender for Cloud Apps and Conditional Access.
• Operate and Continuously Improve
• Own reliability for data protection pipelines, including SLIs/SLOs, runbooks, and incident response playbooks.
• Partner with Privacy and Compliance teams to ensure audit-ready controls for eDiscovery, Audit, and exception management.
• Continuously improve insider risk detection and response workflows.
• Collaborate Across Security & Platform Teams
• Work closely with IAM, Insider Risk, and Platform Security teams to align enforcement with business workflows and least-privilege access.
• Provide technical leadership and mentorship to engineers and analysts supporting Microsoft E5 tools and controls.

• 5+ years of engineering experience in enterprise security or platform engineering.
• Hands‑on experience with Microsoft E5 security stack, including Purview DLP, Information Protection, and eDiscovery/Audit.
• Proven expertise in policy-as-code approaches using Git Hub or Azure Dev Ops.
• Strong experience automating administration via Microsoft Graph API and Power Shell.
• Demonstrated ability to design secure‑by‑default guardrails while enabling rapid SaaS and AI adoption, including Microsoft Copilot.

• Experience protecting regulated data (PII/PHI) and supporting insider risk investigations.
• Production experience with Zscaler (SSE/ZIA/ZPA), Crowd Strike (Falcon APIs/telemetry), and Splunk (CIM, ES).
• Experience migrating from legacy DLP platforms (e.g., Forcepoint) to Microsoft Purview.
• Familiarity with MCAS/Defender for Cloud Apps, Conditional Access policies, and SSPM evaluations.
• Experience supporting HIPAA/PHI audits and exception governance workflows.

Only candidates available and ready to work directly as Genesis
10 employees will be considered for this position. Able to work as a W2 employee of Genesis
10 (no corp to corp).

If you have the described qualifications and are interested in this exciting opportunity, apply today!

• Access to hundreds of clients, many of whom have been working with Genesis
  10 for 5-20+ years.
• The opportunity to have a career-home with Genesis
  10; many of our consultants have been working exclusively with Genesis
  10 for years.
• Access to an experienced, caring recruiting team (with more than 7 years of experience on average).
• Behavioral Health Platform
• Medical, Dental, Vision
• Health Savings Account
• Voluntary Hospital Indemnity (Critical Illness & Accident)
• Voluntary Term Life Insurance
• 401K
• Sick Pay (for applicable states/municipalities)
• Commuter Benefits (Dallas, NYC, SF)
• Remote opportunities available

Genesis
10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

#DIG
10-NY