Lead Data Protection Engineer

Company: enGen

Job Summary:

The Lead Data Protection Engineer is a vital member of the Data Protection team, accountable for designing, implementing, and maintaining the organization's comprehensive data protection infrastructure and applications. This role will spearhead complex projects, address critical incidents, and offer technical guidance and mentorship to team members. Additionally, they will be responsible for establishing Data Protection engineering policies, standards, and procedures. The ideal candidate should possess extensive expertise in Microsoft Purview, ForcePoint, BigID, Varonis, Windows, Linux, GKE, Encryption, and various Data Loss Prevention (DLP) and Data Security Posture Management (DSPM) tools.

Essential Responsibilities:

Lead the design, implementation, and maintenance of the organization's data protection infrastructure across diverse platforms and vendors, ensuring optimal performance, scalability, and security. Responsibilities include DLP, DSPM, and data de-identification solutions.

Architect robust data protection solutions that meet business requirements and adhere to industry best practices, covering both on-premises and cloud environments (GCP, AWS, Azure).

Develop, implement, and maintain data protection policies across all applicable platforms and systems, including configuring sensitive information types, tuning detection parameters, and managing exception lists.

Conduct comprehensive root cause analyses to identify errors' underlying causes, employing advanced troubleshooting techniques and involving relevant teams when necessary for timely remediation.

Effectively manage complex data protection projects with little supervision, leading meetings, providing technical presentations, and communicating project statuses and proposals to stakeholders.

Create custom data protection solutions and automation scripts (e.g., PowerShell, Python) to improve efficiency and streamline processes, integrating with existing systems and utilizing DevOps practices.

Provide technical leadership and mentorship to team members, fostering a culture of continuous learning and improvement within the data protection team.

Stay informed on data privacy regulations and industry standards to ensure the organization's strong data protection posture.

Perform other duties as assigned or requested.

Experience:

Required:

7 years of experience in Data Loss Prevention

7 years of experience in Information Security and Systems Analysis

5 years of experience with at least two modern programming languages (Python, Java, JavaScript, BASH, PowerShell, etc.)

5 years of experience in designing and providing architectural support for at least two cloud service providers (GCP, AWS, Azure)

5 years of experience deploying and maintaining DLP software infrastructure

5 years of experience in creating and managing DLP policies

5 years of experience in Operating Systems and Software Administration

Preferred:

3 years of experience with Kubernetes or other Container orchestration technologies

3 years of experience with GitLab or other version control tools and processes

Skills:

Able to achieve stretch goals in a dynamic and innovative environment.

Strong communication and presentation skills to various technology groups and leadership.

Experience with Kubernetes or Container orchestration technologies

Familiarity with GitLab or other version control systems

Proficiency in Terraform or related automation technologies

Solid infrastructure support skills, including networking

Strong teamwork and interpersonal abilities

Knowledge of secure SDLC best practices

Familiarity with HITRUST CSF, NIST 800-83, PCI, HIPAA, HITECH, COBIT, ISO 27001/2, and ITIL 3

Education:

Required:

Bachelor's degree in Information Security, Information Systems, Information Assurance, Computer Science or a related field

Substitutions:

7 years in Information Security, Governance, Risk, or Compliance, with at least 5 years in hands-on Engineering principles

Preferred:

Master's degree in Information Security, Information Systems, Information Assurance, Computer Science or a related field

Licenses or Certifications:

Required:

None

Preferred:

CISSP

Advanced certification in cloud providers - GCP, AWS or Azure (e.g., Professional Cloud Architect/Security Engineer)

Terraform or similar certification

Travel Required:

Less than 25%

Physical, Mental Demands and Working Conditions:

Position Type:

Remote Position

Physical work site required:

Occasionally

Disclaimer: The job description reflects the general nature and essential duties of the role. It may not encompass all duties, responsibilities, and qualifications required to perform the job.

Compliance Requirement: This position adheres to ethical and legal standards as outlined in the code of business conduct and company policies.

Employees may have access to confidential information that must be protected at all times, in line with HIPAA and company privacy policies.

All employees are expected to comply with the company's Code of Business Conduct, including adherence to federal and state laws and company policies.

Pay Range Minimum: $78,900.00

Pay Range Maximum: $147,500.00

Base pay is determined by factors including qualifications, experience, and contributions.

Highmark Health and its affiliates prohibit discrimination based on protected status and endeavor to make this site accessible to all users.

For accommodation requests, please contact HR Services Online.

Req ID: J271617