Data Security Engineer

We are a data security company dedicated to providing innovative solutions that safeguard sensitive information across various environments. We focus on leveraging advanced enterprise security technologies, such as Microsoft Purview, to keep our clients’ data secure, compliant, and resilient against evolving threats.

Job Summary:

We are seeking a highly skilled Data Security Engineer to join our team. The ideal candidate will have extensive experience with enterprise data security technologies, particularly Microsoft Purview. Proficiency in data labeling, scanning, classification, and applying security controls around sensitive data is essential. Experience or knowledge of compliance frameworks such as NIST, PCI DSS, CMMC, and HIPAA is required; familiarity with privacy frameworks like GDPR and CCPA is a plus.

Key Responsibilities:

• Design, implement, and manage data security strategies using Microsoft Purview.
• Develop and enforce data classification, labeling, and protection policies to secure sensitive data across the organization.
• Conduct data discovery and classification initiatives to identify sensitive information and ensure compliance with data security policies.
• Implement and manage data protection solutions, applying encryption, access controls, and other security measures to protect data.
• Collaborate with cross-functional teams to integrate data security practices into business processes and IT systems.
• Perform security assessments and audits to identify vulnerabilities and ensure compliance with regulatory frameworks, including NIST, PCI DSS, CMMC, and HIPAA.
• Develop and maintain documentation for security policies, procedures, and guidelines related to data protection.
• Provide technical support and expertise for data security incidents, including investigation and response.

Required Qualifications:

• Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent work experience.
• 3+ years of experience in data security engineering, with a focus on enterprise data security technologies.
• Proficiency in Microsoft Purview, particularly its data classification, labeling, and protection features.
• Strong understanding of data security concepts, including data discovery, classification, encryption, and access controls.
• Experience with compliance frameworks such as NIST, PCI DSS, CMMC, and HIPAA.
• Experience with cloud security architecture design and operation, especially in Azure.
• Ability to design and implement data security controls in complex IT environments.

Preferred Qualifications:

• Experience with Netwrix Auditor and Data Classifier.
• Experience with Varonis Data Security toolset.
• Familiarity with privacy frameworks such as GDPR and CCPA.
• Professional certifications such as Information Protection and Compliance Administrator (SC-400), Azure Security Engineer Associate (AZ-500), or similar.
• Familiarity with AWS cloud security environments.