Lead Security Administrator (MS Purview DLP)

  • Austin, TX
  • Posted 1 day ago | Updated 11 hours ago

Overview

On Site
Hybrid
Depends on Experience
Contract - Independent
Contract - W2
Contract - 12 Month(s)
No Travel Required

Skills

ADF
DLP
Data Governance
Data Loss Prevention
Information Security
Incident Management
Risk Management
Security Engineering
Microsoft Azure
Information Technology
MS Purview
Azure data services

Job Details

Role: Lead Security Administrator (MS Purview DLP)

Duration: 12 Months

Location: Hybrid (4 days onsite, 1 day remote), candidates must be local to the Austin area

Summary:

The client has issued a request for a Lead Security Administrator to drive the enterprise rollout and ongoing operation of MS Purview Data Loss Prevention (DLP) policies and Varonis-based access risk remediation, focusing on both hands-on engineering and program leadership.

Responsibilities include (but are not limited to):

Lead enterprise-wide deployment of Microsoft Purview DLP (Exchange, SharePoint, OneDrive, Teams, Endpoint).

Manage creation, publishing, and auto-labeling of sensitivity labels and information protection policies.

Operate and tune Varonis for sensitive data discovery and least-privilege remediation.

Minimum Candidate Characteristics:

6+ years of experience in data governance, information protection, or security engineering

4+ years of experience with MS Purview

Proven cross-divisional program leader with hands-on expertise in DLP (Microsoft Purview), classification, metadata lineage, and Varonis-based remediation

Knowledgeable in Azure data services and regulatory frameworks (GDPR, HIPAA, CCPA, NIST, ISO 27001)

Exceptional Candidate Characteristics:

Experience with one or more Texas State Agencies

One or more of the following certifications: Information Protection Administrator Associate; Azure Security Engineer Associate; CIPP/CISM/CISSP/CISA/CDMP.

Responsibilities:

Coordinate with a multi-divisional program team to ensure the comprehensive rollout of Data Loss Prevention (DLP) policies in Microsoft Purview and operate the Varonis toolset to reduce data exposure risk across M365 collaboration and unstructured data stores. This role blends strategic governance and risk leadership with hands-on engineering, ensuring sensitive data is classified, protected, and compliant across the data lifecycle.

Lead the Microsoft Purview DLP program for unstructured data

  • In coordination with IT staff and the program team, own and manage the end-to-end design, implementation, and tuning of Purview DLP (Exchange, SharePoint, OneDrive, Teams, Endpoint DLP) and sensitivity labels (creation, publishing, auto-labeling).
  • Establish and mature classification, labeling, and lifecycle policies; drive data lineage and catalog coverage.
  • Define monitoring, metrics, and reporting for DLP efficacy, coverage, and policy adherence; optimize Purview health and performance.

Run the Varonis toolset (operations & remediation)

  • Operate and tune Varonis to identify sensitive data, expose risky permissions, and drive least-privilege access remediation with data owners.
  • Develop operational playbooks for alert triage, incident routing, and remediation workflows; integrate signals with incident and risk processes.

Enterprise data governance & risk

  • Co-author and enforce data governance best practices with Legal & Compliance, Records Information Management, Information Technology, and Information Security.
  • Facilitate workshops with data owners/stewards; raise data literacy and promote consistent classification behaviors across divisions.
  • Conduct risk and privacy impact assessments; align controls with NIST and ISO 27001 frameworks and applicable regulations (GDPR, HIPAA, CCPA).

Incident response & compliance operations

  • Partner with Information Security staff to monitor and respond to data-related security incidents, insider risk, and compliance alerts; deliver post-incident improvements.
  • Leverage Purview Compliance Manager, Insider Risk Management, Records Management, Audit, and eDiscovery to streamline investigations and evidentiary requirements.

Required Skills:

  • 6 Years of Experience in data governance/information protection/security engineering
  • 4 Years of Hands-on experience with Microsoft Purview (implementation, policy design, integration)
  • Proven program leadership across multiple divisions; able to independently execute complex roadmaps.
  • Expertise in classification/labeling/DLP, metadata/catalog/lineage; working knowledge of Azure services (ADF, Synapse, SQL, Blob).
  • Hands-on experience operating Varonis (or equivalent) for sensitive-data discovery, permission analysis, and remediation.
  • Working knowledge of GDPR, HIPAA, CCPA, and security frameworks (NIST, ISO 27001).
  • Excellent facilitation and communication skills with business, IT, and Compliance stakeholders.
  • Bachelor s in information security, data/library & information science, or data science (or equivalent experience).

Preferred Skills:

  • Certifications: Microsoft Certified: Information Protection Administrator Associate; Azure Security Engineer Associate; CIPP/CISM/CISSP/CISA/CDMP.
  • Experience with SIEM/DSPM integrations and enterprise change-management/training.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.