J.S. Held, a global consulting firm providing specialized technical, scientific, financial, and advisory services, is seeking a Senior Data Security Engineer to lead the design, implementation, and governance of enterprise data security programs across platforms such as Microsoft 365, Box, Azure, and emerging AI platforms. This role is critical to protecting sensitive client and corporate information, ensuring regulatory compliance, and advancing the firm's data protection capabilities in a rapidly evolving threat landscape.
The ideal candidate will bring deep technical expertise in cloud data security, DLP technologies, and AI security frameworks, combined with strong collaboration skills to work across IT, compliance, legal, and business units.
Key Responsibilities
Data Loss Prevention (DLP) & Information Protection
- Design, implement, and manage enterprise DLP policies across Microsoft Purview, Box Shield, Azure Information Protection, and third-party DLP solutions
- Configure and optimize sensitivity labels, classification taxonomies, and automated data discovery workflows to identify and protect sensitive information
- Conduct regular DLP effectiveness assessments and refine policies based on emerging threats and business requirements
Microsoft 365 Security & Governance
- Secure data within the Microsoft 365 environment including Exchange, Teams, Office 365, Copilot, Power Platform, etc.
- Configure and maintain audit logging, insider risk management, data loss prevention and communication compliance features
- Collaborate with IT teams to enforce security baselines, device compliance policies, and secure collaboration practices across Teams, SharePoint, and OneDrive
Azure Data Security & Cloud Protection
- Design and implement Azure data security controls using tools such as Azure Defender and other Cloud Security Posture Management (CSPM) tools
- Deploy and manage Microsoft Defender for Cloud (formerly Azure Security Center) to monitor security posture and remediate vulnerabilities
- Implement data governance frameworks using Azure Purview for data cataloging, lineage tracking, and compliance scanning
- Conduct cloud security assessments and ensure adherence to CIS/SOC2 Azure Benchmarks and Microsoft Cloud Security Benchmark
AI Security & Emerging Technologies
- Develop and implement security controls and guardrails for AI/ML platforms including Azure AI Services, Microsoft 365 Copilot, and other generative AI tools
- Establish data security best practices for AI training data, model inputs/outputs, and AI-generated content in accordance with CISA and other guidance
- Monitor AI system access, prompt injection risks, data exfiltration attempts, and adversarial attacks on AI models (DSPM for AI)
- Collaborate with security, infrastructure, and other engineering teams to implement privacy-preserving techniques and secure AI development lifecycle practices