Information Security Senior Engineer

The Information Security Senior Engineer is primarily responsible for designing implementing and managing the Firms data governance compliance and information protection policies by enabling and supporting Microsoft Purview. This individual will ensure technical capabilities are in place to ensure that sensitive Client and Firm data is appropriately classified labeled monitored and secured in alignment with regulatory requirements contractual obligations and Firm-specific policies. The Senior Engineer acts as a subject matter expert collaborating with cross-functional teams including our Applications Team Records Management Data and AI Team as well as Risk and Privacy to enable robust data protection lifecycle management and eDiscovery processes. This role will also participate in incident response activities involving data loss prevention insider risk and compliance alerts ensuring timely investigation containment and addition the Senior Engineer will contribute to the Firms overall Data Security and Compliance Strategy driving the adoption of best practices and advanced capabilities within the Microsoft ecosystem.

• Design configure and maintain Microsoft Purview solutions for data classification labeling retention and compliance in alignment with Firm policies and regulatory requirements.
• Implement and manage data security controls including Information Protection policies Data Loss Prevention (DLP) Insider Risk Management and eDiscovery workflows.
• Implement policies to protect sensitive Client and Firm data through classification labeling encryption access governance and monitoring across Microsoft 365 Azure and integrated environments.
• Work with Records Management Data Governance IT Risk and other teams to develop enforce and maintain compliance policies ensuring consistent application of regulatory contractual and Firm-specific data protection requirements.
• Build and optimize automated data governance workflows enabling lifecycle management secure data sharing and defensible disposition of records in accordance with Firm strategy.
• Integrate Purview insights and alerts into Security Operations incident response and GRC processes to strengthen visibility detection and remediation of data-related risks.
• Collaborate with Records Management Data Governance IT Security Legal and Compliance teams to design policies and processes that balance regulatory obligations client requirements and business operations.
• Monitor and respond to Purview compliance alerts investigating potential risks such as data leakage insider threats or policy violations and recommending remediation.
• Participate in risk assessments audits and compliance efforts related to data governance and regulatory frameworks (e.g. ISO 27001 GDPR CCPA HIPAA).
• Stay current with emerging data governance technologies compliance regulations and best practices ensuring the Firm continues to mature its use of Microsoft Purview capabilities.

Salaries vary by location and are based on numerous factors including but not limited to the relevant market skills experience and education of the selected candidate. If an estimated salary range for this role is available it will be provided in our Target Salary Range section. Our compensation package also includes bonus eligibility and a comprehensive benefits program. Benefits information can be found at Salary Range

Qualifications