About the position:

The Lead IT Cybersecurity Engineer is responsible for driving enterprise-level data security initiatives. The ideal candidate will have a proven track record in implementing robust data security frameworks for large organizations, managing data security posture, and ensuring compliance with regulatory standards. This role requires deep expertise in data classification, data security posture management, and hands-on experience with Microsoft Purview.

Key responsibilities:

Responsibilities include but are not limited to:

• Design enterprise-wide data security strategies and frameworks.
• Assess and monitor the organization's data security posture across cloud and on-prem environments. Identify gaps and recommend remediation plans to strengthen security posture.
• Develop and enforce data classification policies to protect sensitive information.
• Serve as a subject matter expert in Data security domain of Cybersecurity.
• Implement data discovery, classification, and risk assessment using Purview tools.
• Lead cross-functional teams in implementing data security initiatives.
• Enable digital transformation by ensuring secure-by-design principles are incorporated in the IT digital capabilities across the enterprise.

Required Qualifications:

• Minimum 10 years related work experience in cybersecurity with increasing levels of responsibility.
• 5 years of experience in Data security with implementation and assessment in large enterprise.
• Proven experience in data security posture management and data classification.
• Hands-on expertise with Microsoft Purview and related data governance tools.
• Strong understanding of regulatory compliance frameworks (GDPR, HIPAA, ISO 27001).
• Technical experience in one or more cybersecurity domains i.e. Cloud Security and Identity and Access Management.
• General understanding of the cyber threat landscape

Cybersecurity Implementation Expertise

• Data Security Posture Management (DSPM): Assessed enterprise-wide data security posture across hybrid and multicloud environments with expertise in risk identification and remediation planning for unprotected sensitive data.
• Familiarity with DSPM tools (e.g., Microsoft Purview DSPM) for automated scanning, analytics, and reporting.
• Skills to create and enforce DLP and Insider Risk Management policies based on DSPM recommendations.
• Hands-on experience in configuring Microsoft Purview for: Data discovery and classification across structured and unstructured data for sensitivity labels and encryption policies for compliance.
• Expertise in designing classification frameworks aligned with regulatory and business requirements.
• Experience in incident response planning and forensic investigations for data breaches.
• Familiarity with Data Loss Prevention (DLP), CASB, and endpoint security solutions
• Leveraging AI-driven tools like Microsoft Security Copilot for risk detection and remediation.

Preferred Education:

• Bachelor's degree or master's degree in Cybersecurity, Information Technology, Information Systems, or Computer Science
• Knowledge of data loss prevention (DLP) and encryption technologies.
• Certifications such as CISSP, CISM, or Microsoft Certified: Information Protection Administrator Associate.
• Certifications in SAFe Scaled Agile or related scrum/agile project management framework is desirable.

Preferred Qualifications

• Knowledge of industry-accepted cyber security frameworks such as NIST 800-53, MITRE ATT&CK, and the Cyber Kill Chain.
• Experience in conducting and/or leading cybersecurity assessments and creating a detailed mitigation plan and recommendations to address gaps identified
• Ability to influence and motivate teams, and work with a variety of disciplines, cultures, and environments.
• Demonstrated ability to work effectively, and communicate effectively at all levels with operations, design, projects, vendors, peers, etc.
• Communicates in a clear, concise, understandable manner both orally and in writing.

Default Terms and Conditions

We respect the privacy of candidates for employment. This Privacy Notice sets forth how we will use the information we obtain when you apply for a position through this career site. If you do not consent to the terms of this Privacy Notice, please do not submit information to us.

Please access the Global Application Statements , select the country where you are applying for employment. By applying, you acknowledge that you have read and agree to the country specific statement.

Terms of Use