Lockton

Security Engineer - Data Protection

Lockton$90K — $120K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Computer Science, Information Security, or related field, or equivalent work experience
  • Professional certification in Microsoft security preferred (SC-400 strongly, AZ-500 or others a plus)
  • Minimum of 5 years in information security, with 3 years focused on data protection
  • Hands-on experience with the Microsoft Purview suite and its components
  • Strong experience in securing data within the Microsoft Azure ecosystem
  • Proficiency in scripting, especially PowerShell, for automation tasks
  • Understanding of data privacy regulations and compliance frameworks

Responsibilities

  • Design and manage a data protection strategy leveraging Microsoft Purview
  • Deploy and configure solutions for Data Loss Prevention and Information Protection
  • Develop and enforce data governance policies for sensitive data protection
  • Create and monitor Data Loss Prevention policies across various platforms
  • Collaborate with teams to translate data protection needs into technical controls
  • Manage the lifecycle of sensitivity labels for data encryption and access control
  • Serve as a subject matter expert on data security incidents

Benefits

  • Access to the latest tools and technologies in data protection
  • Opportunity for professional growth and continued learning
  • Collaborative and supportive team environment
  • Involvement in critical security incident management
  • Participation in an on-call rotation for data security incidences
Full Job Description
Job Summary:

Lockton is seeking a dedicated Security Engineer specializing in Data Protection. This role is focused on leveraging the Microsoft Purview suite to safeguard our organization's most critical data assets across our hybrid environment. The ideal candidate will be a subject matter expert in designing, implementing, and managing data-centric security controls within Microsoft Purview and Azure.

Key Responsibilities:
• Design, implement, and manage a comprehensive data protection strategy utilizing the Microsoft Purview governance and compliance portal.
• Deploy and configure Microsoft Purview solutions, including Data Loss Prevention (DLP), Microsoft Information Protection (MIP) for data classification and sensitivity labeling, Insider Risk Management, and eDiscovery.
• Develop and enforce data governance policies to discover, classify, and protect sensitive data across Microsoft 365, Azure, on-premises infrastructure, and other SaaS applications.
• Create, tune, and monitor robust Data Loss Prevention (DLP) policies for endpoints, email, Microsoft Teams, and cloud applications to prevent data exfiltration.
• Collaborate with business, legal, and compliance teams to translate data protection requirements into technical policies and controls.
• Manage the configuration and lifecycle of sensitivity labels to ensure proper encryption, access control, and visual markings are applied to documents and emails.
• Serve as the subject matter expert for data-related security incidents, using Purview tools for investigation, forensics, and response.
• Monitor the effectiveness of data protection controls and provide regular reporting on compliance, risk posture, and policy enforcement to leadership.
• Stay current with the latest advancements and threats in the data protection landscape and the evolution of the Microsoft Purview platform.
• Actively coach and mentor other security and technology team members on data protection best practices.
• Participate in the security team's on-call rotation and be available to respond to critical data security incidents outside of regular business hours.

Requirements:
• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent work experience.
• Professional certification in Microsoft security, such as SC-400: Microsoft Information Protection Administrator, is strongly preferred. AZ-500 or other relevant certifications are a plus.
• Minimum of 5 years of experience in information security, with at least 3 years focused specifically on data protection, data governance, or information lifecycle management.
• Deep, hands-on experience with the Microsoft Purview suite (formerly Microsoft 365 Compliance Center), including DLP, MIP/AIP, Data Classification, and Insider Risk Management.
• Strong experience with the Microsoft Azure ecosystem and securing data within Azure services (Azure Storage, Azure SQL, etc.).
• Proficiency with scripting languages, particularly PowerShell, for automating security and compliance tasks.
• Strong understanding of data privacy regulations and compliance frameworks (e.g., GDPR, CCPA, HIPAA, ISO 27001).
• Excellent analytical and problem-solving skills with the ability to manage security incidents under pressure.
• Exceptional communication and collaboration skills, with the ability to effectively communicate complex technical concepts to both technical and non-technical audiences.

#LI-JM

About Lockton

Lockton Companies is the world's largest privately held insurance brokerage firm, providing insurance, risk management, employee benefits and retirement services. The company was founded in 1966 and is headquartered in Kansas City, Missouri. Lockton has more than 7,500 associates in over 100 offices worldwide. The company serves clients in a variety of industries, including construction, healthcare, hospitality, manufacturing, real estate, and technology. Lockton is known for its innovative solutions and exceptional customer service.
Learn more about Lockton
Size
7,500 employees
Industry
Founded
1966

Similar Jobs

More Jobs at Lockton

More Information Technology Jobs

Find similar Security Engineer - Data Protection jobs: