Cloud Engineering Professional - Access & Security

Why this job matters

You will be having an opportunity to work on various purview compliance solutions and various new M365 data 
security and Microsoft Entra ID (Azure Active Directory). This role involves collaboration with security, 
compliance, legal, and IT teams to ensure open minded information is properly classified, Secured, retained, and monitored in alignment with regulatory and organizational requirements

What you’ll be doing

• Design and implement sensitivity labels and label policies to protect confidential information across Microsoft 365 workloads (Exchange, SharePoint, Teams, OneDrive, etc.)
• Configure and maintain data loss prevention (DLP) and Endpoint DLP policies to prevent unauthorized sharing of sensitive data across

various Microsoft 365 workloads and other non

• Create and manage retention labels and retention policies to ensure compliance with organizational data retentionstandards.
• Configure Insider risk management policies to detect and respond to potentially risky user behaviour.
• Utilize existing solutions of purview like DSPM for AI to effectively implement compliance solution to protect sensitive data from being exfiltrated using various AI tools,
• Configure and maintain Purview Data Map and Data Catalog to discover and classify data across on-prem, Azure, AWS, and SaaS environments.
• Generate various reports and metrics to measure label adoption and data-protection coverage.
• Resolving alerts/incidents generated by various compliance solutions.
• Exploring new Microsoft Entra ID and M365 Security features and help to implement it.
• Supporting any new application/legalrequirements, identify areas of improvement, and helping BT to improve Compliance Score.
• Automating various activities using PowerAutomate, Power App and Logic Apps.
• Troubleshooting any issues which is reported by application/security/compliance team, identifying root cause, and providing the solution.
• Monitor data usage and access patterns to detect anomalies and enforce insider risk management policies.
• Learning various trending attacks / vulnerabilities and checking if we are on correct state to withstand / prevent / identify those attacks.

Skills Required

• Having Deep knowledge of various industry regulation standards like TRAI, GDPR, HIPAA, SOX, or industry-specific regulations.
• Knowledge of various Microsoft Purview features – Information Protection, Data Loss Prevention, Insider Risk Management, DSPM for AI etc…and Exposure to AI data governance.
• Should have strong knowledge to work with purview related APIs and Microsoft graph APIs.
• Strong collaboration skills with IT Security, Legal, and Data Governance teams.
• Ability to translate technical configurations into compliance outcomes.
• Familiar with data encryption, information rights management and data classification.
• Experience in KQL (Kusto Query Language), Workbooks, Monitoring tools, Incident management and SIEM tools.
• Should be proficient in Power Automate, Power App and Power BI and good to have azure data factory and synapse.
• Familiarity with Microsoft Defender features – Microsoft Defender for Cloud Apps, Microsoft Defender for Identity, Microsoft Defender for Office365, Microsoft Defender for Endpoint.
• Knowledge of Identity Protection, Conditional Access Policy, Privileged Identity Management and Role Based Access Control
• Strong analytical and debugging skills.
• Curiosity to learn new technologies.
• Ability to work in automation like writing required PowerShell Scrips and create new REST API’s using Logic Apps, azure functions etc…

Experience

• Should have hands-on experience with data loss prevention (DLP), information protection, insider risk management, DSPM for AI and other purview solutions.

• A bachelor's degree in computer science, information technology, or a related field, or equivalent work experience.

• Should have prior experience in compliance audits or data privacy projects.

• Ability to work independently and collaboratively in a fast paced and dynamic environment.

• Strong understanding of data governance frameworks, compliance standards (GDPR, HIPAA, etc.), and risk management.

• Would be good to have scripting and coding knowledge.

• Having SC 401 - Microsoft Information Security Administrator certification is a plus

Our leadership standards

Looking in:
Leading inclusively and Safely
I inspire and build trust through self-awareness, honesty and integrity.
Owning outcomes
I take the right decisions that benefit the broader organisation.

Looking out:
Delivering for the customer
I execute brilliantly on clear priorities that add value to our customers and the wider business.
Commercially savvy
I demonstrate strong commercial focus, bringing an external perspective to decision-making.

Looking to the future:
Growth mindset
I experiment and identify opportunities for growth for both myself and the organisation.
Building for the future
I build diverse future-ready teams where all individuals can be at their best.