10+ years in cybersecurity with 5+ years in cloud security and Microsoft Purview. Education in leu of experience will be considered.
Deep expertise in Azure security architecture, Conditional Access, Microsoft 365 Compliance Center and Microsoft Purview suite of tools with an emphasis on Information Protection and DLP.
Proven experience implementing enterprise-grade DLP and Information Protection policies.
Preferred
Bachelor’s degree in information technology, cybersecurity, information assurance or similar.
Certifications: CISSP, CISM, Microsoft Certified: Information Protection Administrator Associate, Azure Security Engineer Associate.
Experience with scripting (PowerShell, KQL) and automation of security controls.
Familiarity with eDiscovery.
Responsibilities:
Soft Title: Principal Cloud Security Engineer
Location: Budapest preferred, but also considering US (Irving, TX).
Office Arrangement: Hybrid
Secure Azure Configuration
Regularly evaluate, recommend and implement Azure security policies that protect from cyber-attack as well as ensure changes to Azure are consistent with company policy.
Assist with the implementation and maintenance of Azure Conditional Access Policies, including device compliance and risk-based sign-in controls.
Assist with the configuration of Azure AD (Entra ID) for identity protection, hybrid join scenarios, and secure access to cloud resources.
Microsoft Purview & Data Protection
Architect and manage Purview tools including Information Protection, DLP, and Data Security Posture Management.
Configure and maintains sensitivity labels, trainable classifiers, and oversharing assessments for SharePoint and Exchange.
Serve as the Subject Matter Expert (SME) for data protection initiatives.
Security Operations & Incident Response
Provide SME support to the Security Operations (SecOps) Team when evaluating cloud/Azure security-related events.
Coordinate and support the SecOps team or 3rd party vendors for high-priority incident response and investigations.
Assist the SecOps team in the development and maintenance of cloud/Azure related playbooks for detecting and responding to cyber-attacks.
Governance & Compliance
Align cloud/Azure security controls with company policies and standards.
Ensure compliance with ISO 27001, NIST CSF, GDPR, and other global regulations.
Support audits and assessments.
Training & Enablement
Deliver training on secure cloud practices and Purview usage to technical teams and business units.
Mentor junior engineers and serve as a subject matter expert for cloud data protection.
