Cybersecurity Data Protection Engineer

TL;DR

Cybersecurity Data Protection Engineer (Microsoft Purview/DLP): Designing, implementing, and managing data protection and data security solutions to ensure consistent, measurable end-to-end delivery of security services with an accent on safeguarding structured and unstructured data across SaaS, cloud storage, and custom applications. Focus on building Microsoft data security capabilities (Purview, Endpoint DLP, DSPM/SSPM, information protection, insider risk, and data lifecycle management), integrating controls with SIEM/EDR/ServiceNow/JIRA, and delivering measurable security metrics for risk mitigation and response.

Company

hirify.global (CAA) is an entertainment and sports agency with global expertise across media, digital, sponsorship, and related services.

What you will do

• Develop an enterprise plan for managing structured and unstructured data with a focus on business enablement.
• Conduct data discovery, classification, and risk assessment across OneDrive, SharePoint, SaaS, and custom applications.
• Implement and manage Microsoft Purview capabilities, including DLP, DSPM/SSPM, information protection, insider risk management, and data lifecycle management.
• Configure and operate Endpoint DLP policies to prevent or monitor data exfiltration across company devices and BYOD.
• Integrate data protection controls with security and workflow tooling such as SIEM, EDR, ServiceNow, and JIRA.
• Coordinate with IRM leadership to deliver security metrics that demonstrate the effectiveness of technical controls.

Requirements

• 6+ years in Information Technology and 3+ years in data protection, DLP, or information security engineering.
• Proven experience with Microsoft data security and data compliance technologies.
• Hands-on experience with one or more: DLP (e.g., Microsoft Purview, CrowdStrike), DSPM/SSPM, and cloud security (AWS/Azure/GCP).
• Strong understanding of data protection techniques (encryption, tokenization, masking), identity and access management, and API security/modern application architectures.
• Experience integrating security tooling with SIEM/SOAR platforms and scripting/programming (e.g., Python or PowerShell).
• Familiarity with security frameworks and privacy/regulatory requirements (NIST, ISO27001, GDPR, CCPA) and security certifications/attestations (SOC, ISO, PCI DSS, FedRAMP).

Culture & Benefits

• Hybrid role based in the Nashville office.
• Annual base salary range of $121,000–$135,000, plus benefits and a discretionary bonus.
• Opportunity to work hands-on within the Information Security group and partner with internal IT and technology teams.