Pureview Security Engineer #999261

Job Title: Senior Security Engineer (Microsoft Purview & AWS)

Location: Hybrid (Jersey City, NJ ; Dallas, TX; Tampa, FL)

Employment Type: Contract-to-Hire

Position Overview

We are seeking a Senior Security Engineer with expertise in data protection, compliance, and cloud security to design, implement, and operate enterprise-scale security solutions across hybrid and multi-cloud environments.

This is a hands-on, architecture-adjacent role responsible for building and managing security controls, policies, and automation across Microsoft 365 and AWS platforms. The ideal candidate will work closely with cross-functional teams including Security, Cloud Engineering, Data Governance, and Compliance to ensure solutions are scalable, auditable, and aligned with business risk.

Key Responsibilities

Data Protection & Microsoft 365 Security

• Design, implement, and manage data protection capabilities within Microsoft Purview
• Develop and maintain:
• Sensitivity labeling and auto-labeling strategies
• Data Loss Prevention (DLP) policies
• Insider Risk Management configurations
• Records management, retention, and eDiscovery processes
• Establish configuration standards and governance controls across Microsoft 365 (Exchange, SharePoint, OneDrive, Teams)
• Continuously monitor and optimize policies using telemetry, alerts, and user impact analysis
• Serve as an escalation point for complex security incidents and investigations

Cloud Security (AWS)

• Design and implement security controls within Amazon Web Services environments
• Configure and manage:
• Logging and monitoring (CloudTrail, centralized logging)
• Security tooling (Security Hub or equivalent)
• Identity and access management (IAM roles, policies, guardrails)
• Ensure cloud services handling sensitive data meet classification, retention, and compliance requirements
• Integrate cloud security telemetry into enterprise monitoring and SIEM platforms

Automation & Integration

• Develop automation using scripting and APIs (e.g., PowerShell, Python, Microsoft Graph, AWS SDKs)
• Integrate security platforms across identity, endpoint, cloud, and monitoring systems
• Implement infrastructure-as-code and repeatable deployment patterns to improve consistency and scalability

Governance, Risk & Compliance

• Translate regulatory and internal policy requirements into technical security controls
• Produce audit-ready documentation, including architecture diagrams, runbooks, and control evidence
• Support risk assessments, audits, and compliance initiatives with clear technical explanations

Leadership & Collaboration

• Provide technical leadership and mentorship to junior engineers
• Collaborate with cross-functional stakeholders to align security solutions with business needs
• Evaluate and recommend new tools and capabilities to enhance data protection and cloud security posture

Required Qualifications

• 6 years of experience in information security, cloud security, or data protection engineering
• Hands-on experience with Microsoft Purview in enterprise environments
• Strong knowledge of:
• Microsoft 365 security and compliance services
• Data governance concepts (DLP, classification, retention)
• AWS security fundamentals (IAM, logging, monitoring)
• Experience designing and implementing security controls at scale
• Proficiency in scripting or automation (e.g., PowerShell, Python)
• Strong communication skills with the ability to produce technical documentation for both technical and non-technical audiences

Preferred Qualifications

• Experience in regulated environments (e.g., financial services, healthcare)
• Familiarity with security frameworks such as:
• NIST
• ISO 27001
• Experience integrating security data into SIEM or monitoring platforms
• Exposure to infrastructure-as-code and cloud automation practices