Data Security & Threat Detection Engineer (Contract)

Summary: The Data Security & Threat Detection Engineer is responsible for designing, implementing, and operating enterprise data protection and threat detection capabilities across cloud, endpoint, and network environments. This role focuses on identifying and mitigating risks to sensitive data through advanced monitoring, security engineering, vulnerability management, and incident response operations. The position plays a critical role in protecting regulated and sensitive information by integrating telemetry from security platforms, developing detection logic, investigating data exposure events, and strengthening enterprise security controls aligned with regulatory frameworks such as HIPAA, NIST 800-53, and PCI DSS. The engineer collaborates across SOC, Identity, Infrastructure, and Governance teams to ensure effective security monitoring, incident response, and continuous control improvement. Key Responsibilities Data Protection Engineering Design and maintain enterprise data protection controls across cloud and on-premise environments. Responsibilities include: • Implement and manage data loss prevention (DLP) and data classification technologies • Configure and monitor Microsoft Purview data protection policies • Implement encryption, access controls, and monitoring safeguards for sensitive information • Integrate data protection controls across endpoint, email, and cloud platforms Threat Detection Engineering Develop detection logic and telemetry correlation across multiple security platforms. Key tasks include: • Build and maintain SIEM detection dashboards and correlation rules • Integrate telemetry from endpoint, identity, email, and cloud security platforms • Tune detection rules to reduce false positives and improve threat visibility • Develop automated security analytics using PowerShell, SQL, and API integrations Security platforms may include: • MS Sentinel • SentinelOne • Proofpoint • Zscaler • Microsoft Purview