MS Purview DLP Administrator
*This is an onsite position
Description:
- A Microsoft Purview DLP Administrator Operations is responsible for managing, monitoring, optimizing and enforcing data loss prevention policies across the Microsoft 365 ecosystem.
- The role focuses on protecting sensitive data ensuring compliance with regulatory standards and responding to DLP alerts and incidents in a timely manner.
- The administrator works closely with Security Compliance IT Infrastructure and Governance teams to maintain strong data protection posture across the organization.
Responsibilities:
DLP Policy Configuration Maintenance:
- Design implement and maintain DLP policies in Microsoft Purview Compliance Portal.
- Configure sensitivity labels label policies and sensitive information types SITs.
- Manage DLP controls across Exchange Online SharePoint Online OneDrive Teams endpoints and third-party integrations.
- Continuously refine policies based on business needs false positives and compliance requirements.
Monitoring Incident Response:
- Monitor DLP alerts policy matches and incident dashboards.
- Perform triage root cause analysis and categorize DLP violations.
- Work with users and departments to resolve incidents and educate them on data handling.
- Escalate high severity incidents to Security or Compliance teams. – Maintain documentation for incidents actions taken and remediation steps.
Reporting Analytics:
- Generate operational and compliance reports on data leakage trends and incidents.
- Provide weekly/monthly dashboards to management and compliance stakeholders.
- Analyze DLP data to identify risky behavior patterns and improvement opportunities.
Regulatory Compliance Governance:
- Ensure DLP policies align with regulations such as NERC FERC SOX GDPR etc.
- Work with Governance/Risk teams to support audits and regulatory assessments.
- Maintain policy change logs and compliance documentation.
End User Communication Training:
- Educate employees about safe data handling practices and DLP policies.
- Create user friendly guidance documents internal knowledge base articles and SOPs.
- Conduct training sessions and awareness campaigns when new policies are deployed.
Integration Platform Management:
- Manage DLP across Microsoft 365 workloads and supported endpoints Windows macOS.
- Integrate DLP with cloud apps via Microsoft Defender for Cloud Apps MCAS when applicable. Work with identity teams to align DLP rules with Conditional Access and Zero Trust policies.
Operational Excellence Continuous Improvement:
- Review false positives/negatives and fine tune policies.
- Develop automation scripts PowerShell for reporting or bulk configuration tasks.
- Participate in security operations reviews and provide recommendations for improvement.
- Track new Purview features and implement updates as needed.
Required Skills/Knowledge/Experience:
- Strong experience with Microsoft Purview Security Compliance Center.
- Deep knowledge of DLP policies sensitivity labels retention policies.
- Understanding of Microsoft 365 services: Exchange SharePoint OneDrive Teams and other Endpoints.
- PowerShell scripting for automation and reporting.
- Basic experience with CyberArk SIEM M365 audit logs and monitoring tools.
Soft Skills:
- Excellent incident management and analytical skills.
- Strong communication and user education capability.
- Ability to work with cross functional teams Security Infra Compliance.
- Detail oriented with strong documentation habits.
Preferred Years of Experience:
- Minimum of 4 years of directly related experience in seat working as an Enterprise Administrator and or a similarly titled role
Education:
- Minimum High School Diploma or Equivalency
Proper email communication will only be done to and from @astyra.com email addresses. Please ensure you are communicating with approved Astyra recruiters by checking this point when receiving offers and messages from us. Please ensure you are communicating within these guidelines and proper channels for the quickest possible interview consideration!
#AC