Data Security Engineer (5+ years exp)

Role: Data Security Engineer

Work Location: Remote

Hire Type: Contract

Years of experience: 5+ Years 

Shift Timing: IST Hours with some overlapping

No of openings: 1

Job Description:

The Data Security Engineer is responsible for the management, optimization, and strategic deployment of data security solutions, with a primary focus on Varonis. This role ensures data visibility, classification, identification of risks, and remediation across enterprise data systems. The role also supports broader data protection initiatives, including data loss prevention (DLP) solutions, and acts as a key technical advisor for secure data management practices.

KEY RESPONSIBILITIES

FUNCTIONAL RESPONSIBILITIES

a. VARONIS MANAGEMENT & OPTIMIZATION:

• Administer and maintain Varonis platform for monitoring, alerting, and reporting on sensitive data access.

• Integrate and manage data sources, including file systems, email, SharePoint, and cloud platforms.

• Configure and optimize classification rules and alerts to identify sensitive or critical data.

• Investigate and remediate data security incidents, providing actionable insights to stakeholders.

b. DATA SECURITY & GOVERNANCE:

• Establish and maintain processes for data access governance and least-privilege enforcement.

• Collaborate with IT and business stakeholders to understand data flow, ownership, and sensitivity.

• Support audits, compliance, and regulatory reporting requirements.

c. DATA PROTECTION & REMEDIATION:

• Identify risky permissions, excessive data access, and potential insider threats.

• Work with data owners to remediate access issues and implement preventive measures.

• Document remediation plans and track progress across data domains.

d. FUTURE INITIATIVES (DLP & BEYOND):

• Assist in evaluating, designing, and deploying Data Loss Prevention (DLP) solutions. 

• Support data security initiatives for cloud and hybrid environments.

• Identify opportunities to automate data security processes and reporting.

e. COLLABORATION & CONSULTATION:

• Serve as a trusted advisor to business units on secure data handling practices. 

• Provide guidance and training on data security policies, classification, and monitoring.

GENERAL RESPONSIBILITIES

• Ensure continuous monitoring, detection, and response to data security risks across enterprise environments.

• Maintain documentation for data security processes, configurations, and standard operating procedures.

• Contribute to the development and improvement of data security policies, standards, and frameworks.

• Provide regular reporting and metrics on data risk posture, remediation progress, and tool effectiveness.

• Stay updated with emerging data security threats, technologies, and industry best practices. 

• Support incident response activities related to data breaches or unauthorized access.

• Participate in security reviews, risk assessments, and project implementations to embed data protection controls.

• Drive continuous improvement through automation, optimization, and process standardization.

QUALIFICATIONS AND EXPERIENCE

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent practical experience).

• 3–7 years of experience in cybersecurity, with a focus on data security, data governance, or identity and access management.

• Hands-on experience with Varonis or similar data security platforms.

• Strong understanding of data classification, access governance, and least privilege principles.

• Experience working with enterprise data sources such as Windows file systems, Microsoft 365 (SharePoint, OneDrive, Exchange), and cloud platforms.

• Familiarity with Data Loss Prevention (DLP) technologies and concepts. 

• Working knowledge of SIEM/XDR platforms and security monitoring practices. 

• Understanding of regulatory and compliance frameworks (NIST CSF, ISO 27001). 

• Scripting or automation experience (PowerShell, Python) is an advantage.

• Relevant certifications such as CISSP, CISM, or vendor-specific certifications are desirable but not mandatory

If interested, please share your resume on [Confidential Information]