Data Loss Prevention Security Engineer

Remote (United States)

About the Role

A Data Loss Prevention Security Engineer is needed to design, implement, and manage enterprise data protection solutions across a remote corporate security and compliance environment. This role focuses on ensuring that sensitive and regulated information is discovered, classified, protected, monitored, and controlled throughout its lifecycle across Microsoft 365 and endpoint environments.

The position serves as a subject matter expert for data protection and Microsoft Purview Information Protection, including MIP and DLP. The role leads policy configuration, tuning, enforcement, reporting, and incident response across the organization. This opportunity requires strong hands-on knowledge of Microsoft cloud security capabilities, data classification, compliance frameworks, and enterprise security operations.

Employment Type: Regular, Full Time

Annual Salary: $130,000 – $142,000 per year

What You’ll Do

• Implement, maintain, and support Microsoft Purview, Data Loss Prevention, Information Protection, and compliance policies, plans, and procedures.
• Develop and tune DLP rules for endpoints to manage data movement between approved boundaries.
• Manage and optimize sensitivity labels, mandatory encryption, and content marking across Microsoft 365.
• Support approved third-party integrations within the enterprise operating environment.
• Collaborate with IT teams and department stakeholders to align DLP policy coverage with regulatory and contractual data handling requirements.
• Support data protection requirements related to CUI and FCI handling.
• Investigate and respond to DLP incidents using Defender XDR and Microsoft Sentinel.
• Correlate security events and generate actionable insights from DLP incidents and related activity.
• Maintain DLP dashboards and reporting to track violations, policy effectiveness, and user behavior trends.
• Serve as the technical liaison for enterprise data protection initiatives involving Microsoft Purview, Zscaler, Qualys, and related security tools.
• Support periodic policy reviews, risk assessments, and audits.
• Ensure continuous compliance and alignment with security architecture standards.
• Document DLP processes, standard operating procedures, and configuration baselines.
• Maintain documentation in accordance with change management practices using Jira and Confluence.
• Provide technical guidance and training to administrators and end users on data handling best practices.

Qualifications

• Bachelor’s degree in Cybersecurity, Information Systems, or a related field, or equivalent experience.
• 5+ years of experience in information security.
• 2+ years of focused experience in data protection and DLP engineering.
• At least one relevant certification is required.
• Microsoft Certified Information Protection Administrator Associate (SC-400) is accepted.
• Microsoft Certified Cybersecurity Architect Expert (SC-100) is accepted.
• Related certifications may also be considered.

Required Skills

• Hands-on expertise with Microsoft Purview Information Protection and DLP.
• Strong experience with Microsoft 365 E5 Security.
• Experience with Defender for Endpoint.
• Experience with Intune app protection.
• Experience with Entra ID, also known as Azure AD.
• Actionable knowledge of data classification standards.
• Knowledge of compliance frameworks including NIST 800-171, CMMC, ISO 27001, and HIPAA.
• Strong understanding of DLP rule logic.
• Strong understanding of sensitivity label configuration.
• Strong understanding of incident response workflows.
• Experience with KQL queries.
• Experience with Microsoft Sentinel.
• Experience with automated DLP alert handling through SOAR or ticketing tools such as Jira.
• Ability to proactively manage timelines for delivery and execution.
• Self-starter mindset with strong ownership and follow-through.

Preferred Skills

• Familiarity with Zscaler is a plus.
• Familiarity with Qualys is a plus.

Working Conditions

• General virtual office environment.
• Sedentary role with a maximum lifting requirement of 10 lbs.
• Occasional lifting or carrying of small articles may be required.
• Occasional walking or standing may be required.
• Role may require standing, sitting, walking, repetitive motion, use of hands and fingers to handle or feel, and visual work.

Core Values

• Maintain a positive and connected working environment where motivation and satisfaction support strong outcomes.
• Support teamwork through helpfulness, collaboration, and shared success.
• Communicate honestly and act with transparency and ethical conduct.
• Stay grounded, respectful, open to feedback, and willing to learn from others.
• Show eagerness for excellence, innovation, and continuous improvement.
• Bring strong drive, work ethic, and commitment to advancing the mission and achieving success.