Job Summary:
The IRM Specialist is responsible for implementing and managing policies, technologies, and procedures that protect sensitive information across the organization. This role ensures that data access is appropriately restricted and monitored, and that compliance with internal and external data protection regulations is maintained.
Key Responsibilities:
- Develop and maintain IRM policies and procedures aligned with organizational goals and compliance requirements.
- Implement IRM solutions using tools such as Microsoft Purview, Azure Information Protection, or other enterprise-level platforms.
- Collaborate with IT, Legal, Compliance, and Business Units to classify data and define access controls.
- Monitor and audit access to sensitive information, ensuring appropriate usage and reporting violations.
- Provide training and awareness programs to employees on data protection and IRM best practices.
- Support incident response teams in investigations involving data leakage or unauthorized access.
- Stay updated on regulatory changes (e.g., GDPR, HIPAA, CCPA) and ensure IRM practices remain compliant.
- Conduct risk assessments and recommend improvements to data protection strategies.
Required Qualifications:
- Bachelor's degree in Information Technology, Cybersecurity, or a related field.
- 3+ years of experience in data protection, information security, or IRM.
- Hands-on experience with IRM tools and technologies (e.g., Microsoft Purview, AIP, DLP solutions).
- Strong understanding of data classification, encryption, and access control models.
- Familiarity with regulatory frameworks and compliance standards.
- Excellent communication and stakeholder management skills.
Preferred Qualifications:
- Certifications such as CISSP, CIPP, CISA, or Microsoft Certified: Security, Compliance, and Identity Fundamentals.
- Experience in cloud environments (Azure, AWS) and hybrid data protection strategies.
- Knowledge of enterprise content management systems and collaboration platforms (e.g., SharePoint, Teams).
