ISTARI
Data Security Senior Engineer
β - Featured Role | Apply direct with Data Freelance Hub
This role is for a Data Security Senior Engineer, a 12-month contractor position focused on Microsoft Purview and enterprise DLP. Requires expertise in data security, compliance (PCI DSS, HIPAA, GDPR), and hands-on experience with Microsoft Sentinel and Databricks. Location: US East Coast or Central.
π - Country
United States
π± - Currency
$ USD
-
π° - Day rate
Unknown
-
ποΈ - Date
December 16, 2025
π - Duration
More than 6 months
-
ποΈ - Location
Hybrid
-
π - Contract
Fixed Term
-
π - Security
Unknown
-
π - Location detailed
United States
-
π§ - Skills detailed
#PCI (Payment Card Industry) #Data Security #Cybersecurity #Data Loss Prevention #AI (Artificial Intelligence) #Cloud #Databricks #GDPR (General Data Protection Regulation) #Classification #Compliance #Security
Role description
About Us
ISTARI is a strategic cybersecurity advisory company with a bold vision: to curate the defining cybersecurity ecosystem of our time - uniting enterprise, academia, government, and innovators to build collective resilience. At the heart of this mission, ISTARI helps clients achieve lasting organisational cyber resilience by convening and applying world-class talent, expertise, and innovation through a uniquely powerful network - with ISTARI as the central orchestrator.
The Opportunity
We are seeking a Data Security Senior Engineer to provide hands-on architecture and engineering support for a clientβs Data Security programme, with a strong focus on Microsoft Purview and enterprise Data Loss Prevention (DLP) capabilities.
This is a 12-month contractor role, requiring a senior, delivery-focused engineer who can immediately contribute to the design, implementation, tuning, and operationalisation of data protection controls across endpoints, email, cloud platforms, and analytics environments, while enabling and supporting the security operations function.
What Youβll Do (Key Responsibilities)
β’ Design, implement, and maintain Microsoft Purview DLP policies to ensure consistent data protection across endpoints, email, cloud services, and collaboration platforms.
β’ Provide engineering support across Microsoft Information Protection (MIP), DSPM, DSPM for AI, Insider Risk Management, Zscaler Network DLP, and enhanced data security controls within Databricks.
β’ Tune and optimise existing DLP policies to reduce false positives while maintaining strong protection of sensitive data in a mature, large-scale Purview environment.
β’ Integrate data security telemetry into Microsoft Sentinel to support correlation, detection, alerting, and reporting of data-related security events.
β’ Support the design and continuous improvement of data classification and governance frameworks, including Sensitive Information Types (SITs), labels, and policy hierarchies.
β’ Participate in incident response activities related to data exfiltration, insider threats, and policy violations, providing technical analysis and remediation guidance.
β’ Align data security controls and reporting with regulatory and compliance requirements such as PCI DSS, HIPAA, GDPR, and other applicable standards.
β’ Collaborate closely with security operations, architecture, and platform teams to ensure data protection controls are fully operationalised within an 8 Γ 5 coverage model.
What Youβll Bring
Experience, Focus & Tooling
You bring deep, hands-on experience delivering enterprise data security outcomes, with the ability to translate policy intent and regulatory requirements into effective, operational controls.
You will have:
β’ Strong hands-on expertise with Microsoft Purview (DLP, Information Protection, Insider Risk Management), including policy design, tuning, and optimisation in large-scale environments.
β’ Experience implementing and operating DSPM and DSPM for AI to improve visibility and control over sensitive data across modern data estates.
β’ Proven capability integrating data security telemetry into Microsoft Sentinel to support SOC detection, investigation, and response workflows.
β’ Practical experience delivering network and cloud DLP controls, including Zscaler Network DLP, aligned to enterprise data protection strategies.
β’ Experience securing data platforms such as Databricks, implementing data protection and access controls across structured and unstructured data sources.
β’ A strong focus on reducing false positives while maintaining robust protection of sensitive data.
β’ Demonstrated ability to work as a self-directed contractor, partnering closely with security engineering, platform, and SOC teams to deliver measurable outcomes.
β’ A solid understanding of regulatory and compliance-driven data protection requirements (e.g. PCI DSS, HIPAA, GDPR) and how these translate into technical controls.
Engagement Details
β’ Engagement Type: Contractor (12-month fixed-term engagement)
β’ Duration: January 2026 β December 2026
β’ Location Preference: US East Coast or Central
β’ Work Authorisation: Not provided
About Us
ISTARI is a strategic cybersecurity advisory company with a bold vision: to curate the defining cybersecurity ecosystem of our time - uniting enterprise, academia, government, and innovators to build collective resilience. At the heart of this mission, ISTARI helps clients achieve lasting organisational cyber resilience by convening and applying world-class talent, expertise, and innovation through a uniquely powerful network - with ISTARI as the central orchestrator.
The Opportunity
We are seeking a Data Security Senior Engineer to provide hands-on architecture and engineering support for a clientβs Data Security programme, with a strong focus on Microsoft Purview and enterprise Data Loss Prevention (DLP) capabilities.
This is a 12-month contractor role, requiring a senior, delivery-focused engineer who can immediately contribute to the design, implementation, tuning, and operationalisation of data protection controls across endpoints, email, cloud platforms, and analytics environments, while enabling and supporting the security operations function.
What Youβll Do (Key Responsibilities)
β’ Design, implement, and maintain Microsoft Purview DLP policies to ensure consistent data protection across endpoints, email, cloud services, and collaboration platforms.
β’ Provide engineering support across Microsoft Information Protection (MIP), DSPM, DSPM for AI, Insider Risk Management, Zscaler Network DLP, and enhanced data security controls within Databricks.
β’ Tune and optimise existing DLP policies to reduce false positives while maintaining strong protection of sensitive data in a mature, large-scale Purview environment.
β’ Integrate data security telemetry into Microsoft Sentinel to support correlation, detection, alerting, and reporting of data-related security events.
β’ Support the design and continuous improvement of data classification and governance frameworks, including Sensitive Information Types (SITs), labels, and policy hierarchies.
β’ Participate in incident response activities related to data exfiltration, insider threats, and policy violations, providing technical analysis and remediation guidance.
β’ Align data security controls and reporting with regulatory and compliance requirements such as PCI DSS, HIPAA, GDPR, and other applicable standards.
β’ Collaborate closely with security operations, architecture, and platform teams to ensure data protection controls are fully operationalised within an 8 Γ 5 coverage model.
What Youβll Bring
Experience, Focus & Tooling
You bring deep, hands-on experience delivering enterprise data security outcomes, with the ability to translate policy intent and regulatory requirements into effective, operational controls.
You will have:
β’ Strong hands-on expertise with Microsoft Purview (DLP, Information Protection, Insider Risk Management), including policy design, tuning, and optimisation in large-scale environments.
β’ Experience implementing and operating DSPM and DSPM for AI to improve visibility and control over sensitive data across modern data estates.
β’ Proven capability integrating data security telemetry into Microsoft Sentinel to support SOC detection, investigation, and response workflows.
β’ Practical experience delivering network and cloud DLP controls, including Zscaler Network DLP, aligned to enterprise data protection strategies.
β’ Experience securing data platforms such as Databricks, implementing data protection and access controls across structured and unstructured data sources.
β’ A strong focus on reducing false positives while maintaining robust protection of sensitive data.
β’ Demonstrated ability to work as a self-directed contractor, partnering closely with security engineering, platform, and SOC teams to deliver measurable outcomes.
β’ A solid understanding of regulatory and compliance-driven data protection requirements (e.g. PCI DSS, HIPAA, GDPR) and how these translate into technical controls.
Engagement Details
β’ Engagement Type: Contractor (12-month fixed-term engagement)
β’ Duration: January 2026 β December 2026
β’ Location Preference: US East Coast or Central
β’ Work Authorisation: Not provided
