DLP Engineer

DLP Engineer

Job Description

[Up to c. $375k Comp Package | Hybrid Working - 3 Days in Office]

How do you protect critical data in an evolving digital landscape? If you're a security professional who thrives on preventing data breaches and safeguarding sensitive information, this role could be for you. Our client, a global investment firm, is seeking a Data Loss Prevention Engineer to lead DLP strategy, automation, and enforcement across cloud and on-prem environments. This is an opportunity to work in a high-impact security team, ensuring data classification, compliance, and risk mitigation at scale...

Key Responsibilities

• Design, deploy, and fine-tune DLP solutions across cloud, endpoint, and on-prem environments
• Improve Insider Risk Management through End-User Behaviour Analytics (EUBA) and proactive detection of anomalous activity
• Implement and optimise Microsoft Purview and M365 DLP for data protection across emails, file storage, and SaaS applications
• Develop automated data classification frameworks, reducing false positives and improving enforcement accuracy
• Define data governance policies and implement access controls to prevent unauthorised data movement
• Partner with Security Operations to integrate DLP tools with SIEM for real-time monitoring, alerting, and response
• Conduct risk assessments and security audits, ensuring compliance with GDPR, CCPA, HIPAA, and internal policies
• Secure structured and unstructured data, implementing protection strategies for databases, endpoints, and collaboration tools
• Maintain clear DLP process documentation, training stakeholders on best practices and security protocols

What You Bring...

• 6-10 years of hands-on experience designing and managing enterprise DLP solutions
• Strong expertise in Microsoft Purview and M365 DLP, with experience securing cloud-based collaboration platforms
• Familiarity with Varonis or other Enterprise DSPM platforms for monitoring data access and movement
• Experience configuring endpoint DLP solutions such as Microsoft Defender for Endpoint, Proofpoint, or similar tools
• Understanding of data classification methodologies, governance models, and automated enforcement mechanisms
• Knowledge of Insider Risk Management strategies, including EUBA for detecting suspicious behaviour
• Strong grasp of data security across infrastructure layers, from applications and storage to networks and endpoints
• Hands-on experience with DLP policies in hybrid environments, securing both structured and unstructured data
• Experience integrating DLP tools with SIEM and security automation platforms
• (Preferred) Familiarity with cloud security principles in AWS, Azure, or Google Cloud

...

Apply for this role

All fields marked with * are required.