Information Security Engineer, Senior - Data Protection

Job Description

The Data Protection team leads data security operations at Stellarus. The Senior Data Protection Engineer will report to the Sr. Manager of Data Protection. In this role you will design, implement, and operate enterprise data protection controls that safeguard sensitive information across email, web, endpoints, cloud platforms, and collaboration tools. This role partners closely with security operations, engineering, privacy, and compliance teams to reduce data risk while enabling the business to operate securely at scale.

Our leadership model is about developing great leaders at all levels and creating opportunities for our people to grow - personally, professionally, and financially. We are looking for leaders that are energized by creative and critical thinking, building and sustaining high-performing teams, getting results the right way, and fostering continuous learning.

Responsibilities

In this role, you will:

• Data Loss Prevention (DLP) Engineering & Operations
  Design, deploy, and operate DLP controls across email, web, endpoints, and collaboration platforms.
  Tune policies to reduce false positives, manage alerting into SIEM platforms, and maintain clear operational runbooks.
  Support secure email and messaging through enterprise email security and DLP controls (e.g., Proofpoint).
• Data Classification & Labeling
  Operationalize the enterprise data classification model into enforceable labeling and protection controls.
  Configure and maintain data labeling and DLP policies within Microsoft Purview.
  Partner with data owners to validate classifications and drive consistent adoption.
• Data Discovery & Posture Management
  Operate data discovery and DSPM tooling to identify sensitive data, exposure risks, and control gaps.
  Translate findings into prioritized remediation actions and track issues to closure.
• Encryption & Key Management
  Implement and govern encryption for data at rest, in transit, and in use.
  Support cloud encryption patterns, key management workflows, and access controls aligned to enterprise standards.
• Monitoring, Incident Response & Compliance
  Monitor data protection events and generate metrics, audit evidence, and compliance artifacts.
  Partner with SOC and incident response teams on triage, containment, root cause analysis, and continuous improvement.
• Engineering Excellence & Automation
  Use automation and scripting to improve policy deployment, labeling hygiene, and alert triage efficiency.
  Document architectures, operational procedures, and scalable support models.

Qualifications

Your Knowledge and Experience

• Strong experience in data protection, DLP, or information security engineering
• Hands-on expertise with email and web DLP, data classification, and encryption controls
• Experience operating security tooling in cloud and SaaS environments
• Hands on experience deploying, configuring, operationalizing, and maintaining DSPM tools
• Scripting and Coding hands on experience (APIs, SQL, Python, Regex, Powershell)
• Ability to translate risk findings into practical, scalable remediation
• Strong documentation, collaboration, and communication skills

About the Team

About Stellarus and the Ascendiun Family of Companies

Stellarus, launched in January 2025, is designed to scale innovative healthcare solutions that support customers in creating a health care experience deserving of their family, friends, and neighbors.

Stellarus is part of a family of organizations that is overseen by a nonprofit corporate entity named Ascendiun. The Ascendiun Family of Companies also includes Blue Shield of California and its subsidiary, Blue Shield of California Promise Health Plan and Altais, a clinical services company.

Stellarus' vision is to empower its customers to create a healthcare experience that is worthy of their family, friends, and neighbors. Stellarus' objective is to offer innovative, modern, scalable solutions that challenge the health care status quo. This very closely aligns with Blue Shield of California's vision by using innovation to improve quality, affordability, and experience for members.

To achieve our mission, we foster an environment where all employees can thrive and contribute fully to address the needs of the various communities we serve. We are committed to creating and maintaining a supportive workplace that upholds our values and advances our goals.

Our Values:

At Stellarus, our core values of agility, trust, drive, courage and service shape our approach to developing innovative product offerings.

Our Workplace Model:

We believe in fostering a workplace environment that balances purposeful in-person collaboration with flexibility - providing clear expectations while respecting the diverse needs of our workforce. Our workplace model is designed around intentional in-person interaction, collaboration, connection, creativity and flexibility:

• For most teams, this means coming into the office two days per week.
• Employees living more than 50 miles from an office location, out of state employees, and employees in certain member-facing roles should work with their manager to determine in-office time based on business need.
• For employees with medical conditions that may impact their ability to work in-office, we are committed to engaging in an interactive process and providing reasonable accommodations to ensure their work environment is conducive to their success and well-being.

The Company reserves the right to require more presence in the office based on business needs, and requirements are subject to change with periodic reviews.

Physical Requirements:

Office Environment - roles involving part to full time schedule in Office Environment. Based in our physical offices and work from home office/deskwork - Activity level: Sedentary, frequency most of work day.

Please click here for further physical requirement detail.

Equal Employment Opportunity:

External hires must pass a background check/drug screen. Qualified applicants with arrest records and/or conviction records will be considered for employment in a manner consistent with Federal, State and local laws, including but not limited to the San Francisco Fair Chance Ordinance. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran status or disability status and any other classification protected by Federal, State and local laws.