Job Title: Insider Risk Management Engineer (Microsoft Purview)
Role Summary
Responsible for end-to-end implementation and operationalization of Microsoft Insider Risk Management (Purview) solutions to detect, investigate, and mitigate insider threats across the organization.
Key Responsibilities
- Lead implementation lifecycle of Microsoft Insider Risk Management:
- Requirements gathering & risk assessment
- Solution design & policy architecture
- Configuration & deployment
- Testing & tuning
- Go-live & hypercare support
- Configure Insider Risk policies (Data Leaks, Data Theft, Security Policy Violations, etc.)
- Integrate with:
- Microsoft Purview DLP
- Microsoft Defender
- Microsoft Sentinel (SIEM)
- HR data connectors
- Develop alert triage workflows and investigation procedures
- Reduce false positives through policy tuning and threshold optimization
- Create dashboards and reports for risk visibility
- Collaborate with SOC, HR, Legal, and Compliance teams
- Document architecture, SOPs, and governance processes
Required Skills
- 36 years in cybersecurity or data protection
- Hands-on experience with Microsoft Purview Insider Risk Management
- Strong knowledge of:
- DLP & data classification
- Microsoft 365 security stack
- KQL & log analysis
- Understanding of insider threat frameworks (NIST, ISO)
- Experience in stakeholder coordination during security tool deployment
