Senior Data Security Engineer to support USSOCOM EDAT Zero Trust. The Senior Data Security Engineer serves as a key member of the USSOCOM Enterprise Zero Trust Data Team, responsible for designing, implementing, and maintaining data-centric security capabilities across classified and unclassified environments. This role supports the Department of Defense (DoD) Zero Trust strategy by ensuring data is protected throughout its lifecycle through advanced security controls, data governance, policy enforcement, and continuous monitoring.

The engineer will collaborate with cybersecurity, cloud, identity, network, and application teams to implement Zero Trust principles focused on data discovery, classification, protection, access control, and monitoring. The position requires strong technical expertise in Data Security Posture Management (DSPM), Data Loss Prevention (DLP), encryption technologies, data governance frameworks, and Zero Trust architecture.

Location: Hybrid in Tampa, Florida

Responsibilities

• Design and implement data-centric security architectures aligned with DoD and USSOCOM Zero Trust initiatives.
• Lead deployment and administration of Data Security Posture Management (DSPM) solutions across enterprise environments.
• Develop and maintain data classification, labeling, and protection policies for sensitive and mission-critical information.
• Implement and manage Data Loss Prevention (DLP) technologies to prevent unauthorized disclosure of controlled information.
• Engineer encryption solutions for data at rest, in transit, and in use.
• Integrate data security controls with Identity, Credential, and Access Management (ICAM) systems.
• Support implementation of Attribute-Based Access Control (ABAC) and policy-driven access models.
• Conduct data discovery and mapping activities across cloud, on-premises, and hybrid environments.
• Develop automated workflows for data protection, monitoring, and compliance reporting.
• Support Continuous Authorization to Operate (cATO) initiatives through automated security validation and compliance monitoring.
• Perform risk assessments and security evaluations of enterprise data repositories and applications.
• Analyze security events and data-related incidents to identify root causes and corrective actions.
• Develop technical documentation, engineering designs, standard operating procedures, and implementation guides.
• Provide technical leadership and mentorship to junior engineers supporting the Zero Trust Data Team.
• Collaborate with stakeholders across cybersecurity, cloud, network, application, and mission systems teams.

Qualifications

• Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or related field. Additional years of relevant experience may be substituted for formal education requirements when permitted by contract guidelines.
• Experience:
  • Minimum of 10 years of experience in cybersecurity, information assurance, or data security engineering.
  • Minimum of 5 years supporting DoD, Intelligence Community, or Federal Government cybersecurity initiatives.
  • Experience implementing enterprise data protection solutions in large-scale environments.
  • Experience supporting Zero Trust architecture initiatives and security modernization efforts.
  • Experience with cloud security technologies in AWS, Azure, or hybrid cloud environments.
• Technical Skills:
  • Data Security Posture Management (DSPM)
  • Data Loss Prevention (DLP)
  • Data Discovery and Classification
  • Encryption and Key Management
  • Rights Management and Information Protection
  • Data Governance and Compliance Frameworks
  • Security Information and Event Management (SIEM)
  • Cloud Security Architecture
  • Zero Trust Architecture (NIST SP 800-207)
  • Attribute-Based Access Control (ABAC)
  • Security Automation and Orchestration
  • Scripting and automation using PowerShell, Python, or similar technologies

Security Framework Knowledge:

• DoD Zero Trust Reference Architecture
• NIST SP 800-207 Zero Trust Architecture
• NIST Risk Management Framework (RMF)
• NIST 800-53 Security Controls
• DoD Cybersecurity Policies and Directives
• Controlled Unclassified Information (CUI) Requirements
• Data-Centric Security and Information Protection Frameworks

Required Certifications:

Must possess one of the following DoD 8570/8140 IAT Level III certifications:

• CISSP
• CASP+
• CCSP
• CISM

Preferred Qualifications:

• Experience supporting USSOCOM, SOF, or Joint Service environments.
• Experience with Microsoft Purview, Microsoft Information Protection (MIP), and related data governance platforms.
• Experience implementing DSPM platforms such as BigID, Varonis, Securiti, Cyera, or similar solutions.
• Experience with Cross Domain Solutions (CDS) and classified data handling requirements.
• Familiarity with DevSecOps, Platform One, and cATO methodologies.
• Experience supporting enterprise cloud migrations and data modernization initiatives.
• Knowledge of AI/ML governance and protection of sensitive training datasets.

Clearance Requirement:

• TS/SCI
• Must be a US Citizen

Benefits

We offer competitive benefits package including paid time off, healthcare benefits, supplemental benefits, 401k including an employer match, discount perks, rewards, and more. We invest in our employees - Every employee is eligible for education reimbursement for certifications, degrees, or professional development. Reimbursement amounts may fluctuate due to IRS limitations. We want you to grow as an expert and a leader and offer flexibility for you to take a course, complete a certification, or other professional growth and networking. We are committed to supporting your curiosity and sustaining a culture that prioritizes commitment to continuous professional development.

We work hard; we play hard. Kentro is committed to incorporating fun into every day. We dedicate funds for activities - virtual and in-person - e.g., we host happy hours, holiday events, fitness & wellness events, and annual celebrations. In alignment with our commitment to our communities, we also host and attend charity galas/events. We believe in appreciating your commitment and building a positive workspace for you to be creative, innovative, and happy.

How to Apply

To apply to Kentro Positions- Please click on the job link and then click the blue "Apply" button at the top right of Job Description. Please upload your resume and complete all the application steps. You must fully submit the application for Kentro to consider you for a position. If you need alternative application methods, please email [email protected] and request assistance.

Accommodations

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable Accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. If you need to discuss reasonable accommodations, please email [email protected].

#LI-