Senior Data Security Engineer (USSOCOM-Zero Trust, Azure Security & DLP)
Job Summary
Overview
Thank you for considering IT Concepts dba Kentro where innovation drives opportunity and collaboration leads to success. Our dynamic community of experts is fully committed to advancing our customers missions fostering professional growth and making a positive impact on our communities.
By joining our supportive community you will find that Kentro is dedicated to your personal and professional development. Together we can drive meaningful change spark innovation and achieve extraordinary milestones.
Kentro is hiring for Senior Data Security Engineerto support USSOCOM EDAT Zero Trust.
Before data can be protected under a Zero Trust architecture it must be understood and precisely controlled. You will be responsible for securing the Commands complex information environment ranging from hyperscale cloud data lakes on NIPR to legacy file shares and isolated storage arrays on the SIPR and Top-Secret networks.
As a Senior Data Security Engineer you will architect deploy and manage advanced data rights management DLP policies and security monitoring solutions. You will serve as the premier subject matter expert forMicrosoft Azure security with a heavy focus onMicrosoft PurviewandMicrosoft Defender XDR.
Furthermore you will lead the implementation ofTrellix Full Data Loss Prevention (DLP)and theMicrosoft Defender suiteto enforce continuous compliance preventunauthorized data exfiltration and establish secure access boundaries for USSOCOMs critical intelligence
Location: Hybrid in Tampa Florida
Responsibilities
Azure Security & XDR: Architect and manage comprehensive Azure security solutions serving as the primary lead for deploying and tuningMicrosoft PurviewandMicrosoft Defender XDRacross hybrid and classified environments.
Defender & Access Policy: Design and configure precise security policies within theMicrosoft Defender suite specifically leveragingMicrosoft PurviewMicrosoft Defender for Cloud Apps(MCAS)Entra ID andMicrosoft Conditional Accessto control resource access based on identity device compliance and risk.
Trellix DLP Enforcement: Design deploy and enforceTrellix Full Data Loss Prevention (DLP)policies across endpoints and networks to stop unauthorized exfiltration of CUI and classified data without impacting mission performance.
Data Rights Management: ManageActive Directory Rights Management (AD-RMS)andAzure RMSas the primary DRM engines to enforce persistent encryption-based protection of files and emails across USSOCOM networks.
Catalog & DLP Integration: Drive data catalog integration and metadata synchronization with enterprise platforms includingPalantirMicrosoft Unified CatalogPurview Audit andActivity Explorer. Specifically lead theintegration of Palantir catalog solutions with Data Loss Prevention (DLP) toolsto ensure seamless end-to-end data security and monitoring.
Classification Tuning: Collaborate with mission owners to train classifiers and DLP rules to recognize unique USSOCOM data types (e.g. mission names operational codes) and drastically reduce false positive rates in security alerts.
Qualifications
- Education: Masters degree (MA/MS) in Computer Science Cybersecurity Information Technology or a related technical discipline.
- Experience:10 yearsof relevant experience in enterprise systems engineering data security or cybersecurity operations.
- Technical Skills:
- Azure Security Expert:Expert-level proficiency in Microsoft Azure security architecture with a dedicated focus on implementing and managingMicrosoft PurviewandMicrosoft Defender XDR.
- Microsoft Security Stack:Deep hands-on expertise in the broader Microsoft Defender suite specifically:
- Microsoft Purview(Sensitivity Labeling DLP Information Barrier policies).
- Microsoft Defender for Cloud Apps(Cloud Access Security Broker - CASB policies).
- Microsoft Entra ID(Identity and Access Management).
- Microsoft Conditional Access(Context-aware zero-trust security policies).
- Trellix & Palantir DLP Expertise:Proven experience designing tuning and enforcingTrellix Full Data Loss Prevention (DLP)policies at an enterprise scale. Must have specific expertise in theintegration of Palantir catalog solutions with Data Loss Prevention tools.
- Data Rights Management:Strong experience implementing and administeringAD-RMSandAzure RMSin complex multi-domain or hybrid cloud environments.
- Data Catalog Integration:Proven experience integrating and managing metadata across enterprise catalogs such asPalantirMicrosoft Unified Catalog and utilizingPurview AuditandActivity Explorer.
- Storage & Database Knowledge:Strong understanding of storage protocols (NFS SMB/CIFS S3) and database structures (SQL NoSQL) to troubleshoot security scanning access.
- Required Certifications:
- Must possess one of the following DoD 8570/8140 IAT Level III certifications:
- CISSP
- CASP
- CCSP
- CISM
Preferred Technical Skills (A-Plus):
- Advanced knowledge ofKusto Query Language (KQL)for writing sophisticated detection rules hunting queries and diagnostic analysis within Microsoft Sentinel/Defender XDR.
- Strong proficiency inSplunk Processing Language (SPL)for building advanced dashboards alerts and performing forensic analysis.
Clearance Requirement:
- TS/SCI
- Must be a US Citizen
Benefits
The Company
We believe in generating success collaboratively enabling long-term mission success and building trust for the next challenge. With you as our partner lets solve challenges think innovatively and maximize impact. As a valued member of our team you have the unique opportunity to work in a diverse range of technology and business career paths all while supporting our nation and delivering innovative technology solutions. We are a close community of experts that pride ourselves on creating an environment defined by teamwork dedication and excellence.
We hold three ISO certifications (27001:-1::2015) two CMMI ML 3 ratings (DEV and SVC) and CMMC Level 2 Certification.
Industry Recognition
Growth Inc 5000s Fastest Growing Private Companies DC Metro List Fastest Growing; Washington Business Journal: Fastest Growing Companies Top Performing Small Technology Companies in Greater D.C.
Culture Northern Virginia Technology Council Tech 100 Honoree; Virginia Best Place to Work; Washington Business Journal: Best Places to Work Corporate Diversity Index Winner Mid-Size Companies Companies Owned by People of Color; Department of Labors HireVets for our work helping veterans transition; SECAF Award of Excellence finalist; Victory Military Friendly Brand; Virginia Values Veterans (V3); Cystic Fibrosis Foundation Corporate Breath Award
Benefits
We offer competitive benefits package including paid time off healthcare benefits supplemental benefits 401k including an employer match discount perks rewards and more. We invest in our employees Every employee is eligible for education reimbursement for certifications degrees or professional development. Reimbursement amounts may fluctuate due to IRS limitations. We want you to grow as an expert and a leader and offer flexibility for you to take a course complete a certification or other professional growth and networking. We are committed to supporting your curiosity and sustaining a culture that prioritizes commitment to continuous professional development.
We work hard; we play hard. Kentro is committed to incorporating fun into every day. We dedicate funds for activities virtual and in-person e.g. we host happy hours holiday events fitness & wellness events and annual alignment with our commitment to our communities we also host and attend charity galas/events. We believe in appreciating your commitment and building a positive workspace for you to be creative innovative and happy.
Commitment Equal Opportunity Employment & VEVRAA
Kentro is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to disability status as a protected veteran or any other status protected by applicable federal state or local law.
Kentro is strongly committed to compliance with VEVRAA and other applicable federal state and local laws governing equal employment opportunity. We have developed comprehensive policies and procedures to ensure our hiring practices align with these requirements.
As part of our VEVRAA compliance efforts Kentro has established an equal opportunity plan outlining our commitment to recruiting hiring and advancing protected veterans. This plan is regularly reviewed and updated to ensure its effectiveness.
We encourage protected veterans to self-identify during the application process. This information is strictly confidential and will only be used for reporting and compliance purposes as required by law. Providing this information is voluntary and will not impact your employment eligibility.
Our commitment to equal employment opportunity extends beyond legal compliance. We are dedicated to fostering an inclusive workplace where all employees including protected veterans are treated with dignity respect and fairness.
How to Apply
To apply to Kentro Positions- Please click on the job link and then click the blue Apply button at the top right of Job Description. Please upload your resume and complete all the application steps. You must fully submit the application for Kentro to consider you for a position. If you need alternative application methods please email and request assistance.
Accommodations
To perform this job successfully an individual must be able to perform each essential duty satisfactorily. Reasonable Accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. If you need to discuss reasonable accommodations please email .
#LI-SH1
Required Experience:
Senior IC