Job DescriptionJob Description The Senior Data Protection Engineer provides thought leadership and strengthens the cybersecurity team in protecting the organization's sensitive data across endpoints, networks, cloud, and email. This role designs, implements, and optimizes enterprise Data Loss Prevention (DLP) solutions-with deep expertise in the Microsoft data protection suite (Microsoft Purview), along with Varonis and cloud data protection tools such as Wiz across environments like AWS-to safeguard protected health information (PHI) and other regulated data, while performing data classification, monitoring, incident response, and policy tuning and mentoring junior team members. While DLP is the primary focus, the successful candidate will also support cybersecurity incident response and other initiatives across a range of security domains, making well-rounded cybersecurity knowledge essential, and will share in some on-call responsibilities.
Duties and Responsibilities- Lead efforts in designing, deploying, and maintaining enterprise Data Loss Prevention (DLP) solutions across endpoint, network, cloud, and email channels.
- Administer, configure, and optimize Microsoft Purview and Varonis to classify, monitor, and protect sensitive and regulated data.
- Configure and manage Microsoft Purview Insider Risk Management to detect, investigate, and mitigate risky user activity and potential insider threats.
- Design and enforce email DLP policies to prevent the unauthorized transmission of PHI and other sensitive data via email and other messaging channels.
- Implement and manage data protection across cloud environments such as AWS, leveraging cloud security tools such as Wiz to discover, classify, and safeguard sensitive data and remediate data exposure risks.
- Develop, enforce, tune, and continuously improve DLP policies, rules, and data classification schemes to minimize false positives and data exfiltration risk.
- Investigate, triage, and respond to DLP alerts and data loss incidents, including root cause analysis and remediation in coordination with privacy, compliance, and legal teams.
- Work as part of a dynamic team responsible for cybersecurity incident response and other initiatives across a range of security domains, participating in the investigation, containment, and remediation of security incidents.
- Participate in a rotating on-call schedule to support incident response and time-sensitive security events outside of standard business hours.'
- Collaborate with teams throughout ISS, as well as Privacy and Compliance, to ensure the protection of PHI and adherence to HIPAA and other regulatory requirements.
- Provide mentorship and guidance to junior and mid-level cybersecurity engineers.
- Participate in the development and implementation of cybersecurity strategies and policies.
QualificationsBachelor's degree or higher in Cybersecurity, Information Technology, or a related field preferred; equivalent experience will be considered for exceptional candidates.
- Relevant certifications are highly desirable, including the Microsoft Certified: Information Protection and Compliance Administrator Associate (SC-400) for data protection expertise, as well as broad cybersecurity certifications such as CISSP, GIAC GSEC, or CompTIA Security+ that demonstrate overall cybersecurity knowledge.
Knowledge and Experience- Strong understanding of Data Loss Prevention principles, data classification, and information protection practices.
- Working knowledge of HIPAA and its requirements for protecting electronic protected health information (ePHI) in a hospital or healthcare environment.
- Deep, hands-on knowledge of the Microsoft data protection suite and its capabilities-including Microsoft Purview DLP, Information Protection, sensitivity labeling, and Insider Risk Management-along with Varonis and other data security technologies across endpoint, network, cloud, and email.
- Extensive experience implementing and operating enterprise DLP programs, including policy creation, data classification, and incident response.
- Experience protecting data in cloud environments such as AWS, including the use of cloud security and data protection tools such as Wiz.
- Hands-on experience with cybersecurity incident response, including the investigation, containment, and remediation of security incidents as part of a team.
- Solid overall knowledge of cybersecurity principles and practices beyond data protection, with the ability to contribute across a broad range of security domains.
- 3-5 years of experience in Data Loss Prevention, data security, or information technology in a large organization, preferably healthcare.
- Strong analytical and problem-solving skills.
- Excellent communication and teamwork abilities.
- Ability to manage cybersecurity projects within a healthcare organization, balancing security objectives with operational and regulatory requirements.
- Ability to work effectively with both technical and non-technical team members, communicating complex security concepts to a range of audiences.
- Ability to learn and adapt to new technologies quickly.
- Attention to detail and a proactive approach to security.
Skills and Abilities- Strong analytical and problem-solving skills.
- Excellent communication and teamwork abilities.
- Ability to manage cybersecurity projects within a healthcare organization, balancing security objectives with operational and regulatory requirements.
- Ability to work effectively with both technical and non-technical team members, communicating complex security concepts to a range of audiences.
- Ability to learn and adapt to new technologies quickly.
- Attention to detail and a proactive approach to security.
Atlantic Health offers a competitive and comprehensive Total Rewards package that supports the health, financial security, and well-being of all team members. Offerings vary based on role level (Team Member, Director, Executive). Below is a general summary, with role-specific enhancements highlighted:
Team Member Benefits
- Medical, Dental, Vision, Prescription Coverage (22.5 hours per week or above for full-time and part-time team members)
- Life & AD&D Insurance.
- Short-Term and Long-Term Disability (with options to supplement)
- 403(b) Retirement Plan: Employer match, additional non-elective contribution
- PTO & Paid Sick Leave
- Tuition Assistance, Advancement & Academic Advising
- Parental, Adoption, Surrogacy Leave
- Backup and On-Site Childcare
- Well-Being Rewards
- Employee Assistance Program (EAP)
- Fertility Benefits, Healthy Pregnancy Program
- Flexible Spending & Commuter Accounts
- Pet, Home & Auto, Identity Theft and Legal Insurance
Note: In Compliance with the NJ Pay Transparency Act (effective Sunday, June 1, 2025), all job postings will include the hourly wage or salary (or a range), as well as this summary of benefits. Final compensation and benefit eligibility may vary by role and employment status and will be confirmed at the time of offer.
About the TeamAtlantic Health System is at the forefront of medicine, setting standards for quality health care powered by a workforce of more than 18,000 team members and 4,800 affiliated physicians dedicated to building healthier communities, the system offers more than 400 sites of care, including eight award-winning medical centers. Specializing in cardiovascular care, cancer care, orthopedics, neuroscience, pediatrics, women's health and rehabilitation medicine. Atlantic Medical Group, comprised of 1,000 physicians and advanced practice providers, represents one of the largest multi-specialty practices in New Jersey and includes finance, legal, marketing, human resources, talent acquisition, ISS and more. Caring for our patients, our team members and the communities we serve is our central mission.