Data Loss Prevention Security Engineer

Jobgether·Lever
United StatesFull-time$130k–$142kPosted Jul 4, 2026
Apply

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Data Loss Prevention Security Engineer based in the United States.

In this role, you will play a critical part in strengthening enterprise data protection across modern cloud and endpoint environments. You will design and implement Data Loss Prevention (DLP) strategies that safeguard sensitive and regulated information throughout its lifecycle. The position focuses heavily on Microsoft Purview and Microsoft 365 security tooling, ensuring effective classification, labeling, and policy enforcement at scale. You will serve as a key technical expert, partnering with IT, security, and compliance stakeholders to align controls with regulatory frameworks such as NIST, CMMC, ISO 27001, and HIPAA. This is a hands-on engineering role where you will investigate incidents, tune detection policies, and continuously improve protection mechanisms. You will also contribute to security operations maturity through automation, reporting, and cross-functional collaboration in a fully remote environment.

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Data Loss Prevention Security Engineer based in the United States.

In this role, you will play a critical part in strengthening enterprise data protection across modern cloud and endpoint environments. You will design and implement Data Loss Prevention (DLP) strategies that safeguard sensitive and regulated information throughout its lifecycle. The position focuses heavily on Microsoft Purview and Microsoft 365 security tooling, ensuring effective classification, labeling, and policy enforcement at scale. You will serve as a key technical expert, partnering with IT, security, and compliance stakeholders to align controls with regulatory frameworks such as NIST, CMMC, ISO 27001, and HIPAA. This is a hands-on engineering role where you will investigate incidents, tune detection policies, and continuously improve protection mechanisms. You will also contribute to security operations maturity through automation, reporting, and cross-functional collaboration in a fully remote environment.

Accountabilities:

    In this role, you will be responsible for building, maintaining, and optimizing enterprise DLP and information protection capabilities across Microsoft 365 and endpoint ecosystems. You will lead policy design, incident response, and continuous improvement of data protection controls while ensuring alignment with compliance requirements and organizational risk standards.

    • Design, implement, and maintain Microsoft Purview DLP, Information Protection, and compliance policies across enterprise environments.
    • Develop and tune DLP rules, sensitivity labels, encryption policies, and content marking to protect sensitive data.
    • Monitor, investigate, and respond to DLP incidents using Microsoft Defender XDR, Sentinel, and related SIEM/SOAR tools.
    • Partner with IT, security, and business teams to ensure alignment with regulatory requirements and data handling standards.
    • Maintain dashboards, reporting, and analytics to track policy effectiveness, violations, and user behavior trends.
    • Support audits, risk assessments, and compliance reviews to ensure continuous security and regulatory alignment.
    • Provide technical guidance, documentation, and training on data protection best practices across the organization.
    • Requirements:

      The ideal candidate brings strong hands-on expertise in Microsoft security technologies and a solid understanding of data protection frameworks. You are a proactive, detail-oriented security professional with experience translating compliance requirements into effective technical controls.

      • 5+ years in information security, with at least 2+ years focused on DLP and data protection engineering.
      • Hands-on experience with Microsoft Purview, Microsoft 365 E5 Security, Defender for Endpoint, Entra ID, and Intune.
      • Strong understanding of data classification standards and regulatory frameworks (NIST 800-171, CMMC, ISO 27001, HIPAA).
      • Experience configuring DLP rules, sensitivity labels, and incident response workflows.
      • Familiarity with Microsoft Sentinel, KQL queries, and security automation or SOAR workflows.
      • Ability to work independently, manage priorities, and deliver security initiatives in a fast-paced environment.
      • Strong communication skills with the ability to translate technical findings into actionable business guidance.
      • Bachelor’s degree in Cybersecurity, Information Systems, or related field (or equivalent experience).
      • Certifications such as Microsoft SC-400 or SC-100 strongly preferred.
      • Benefits:

        • Competitive annual salary: $130,000 – $142,000
        • Remote-first work environment
        • Opportunity to work on mission-critical enterprise security initiatives
        • Exposure to advanced Microsoft security and cloud technologies
        • Collaborative and values-driven culture focused on innovation and teamwork
        • Professional growth and hands-on experience with modern security tooling
        • Eligibility for additional benefits as provided by the hiring organization.
How Jobgether works: We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best!  Why Apply Through Jobgether?    Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.     #LI-CL1

Want jobs like this matched to you?

Swoopd scores fresh postings against your résumé so you only see the matches that matter.

Get started free