Asst. Manager Application & Product Security (DevSecOps & AI Security)

We are looking for an experienced Microsoft Security Expert to lead the design, implementation, and management of enterprise data protection strategies using Microsoft Purview Data Loss Prevention (DLP), Microsoft Defender for Cloud Apps (CASB), and related security platforms. This role is critical in enforcing Zero Trust principles, safeguarding sensitive data, and ensuring compliance across cloud and on-premises environments.

Key Responsibilities

• Data Loss Prevention (DLP) Strategy





• Design and implement DLP policies using Microsoft Purview to protect sensitive data across Microsoft 365 services (Exchange, SharePoint, OneDrive, Teams), endpoints, and non-Microsoft cloud apps.


• Configure sensitivity labels, adaptive protection, and policy enforcement for data at rest, in use, and in motion.





• CASB Integration





• Deploy and manage Microsoft Defender for Cloud Apps (MDCA) to monitor and control SaaS usage, enforce session policies, and detect risky behaviors.


• Integrate CASB with Purview and Defender for Endpoint for unified visibility and incident response.





• Governance & Compliance





• Align DLP and CASB configurations with organizational compliance frameworks and regulatory requirements.


• Collaborate with Information Governance and Risk teams to ensure consistent application of data classification and retention policies.

.

• Incident Response & Reporting





• Investigate DLP s and CASB incidents, gather evidence, and coordinate remediation with stakeholders.


• Generate compliance and security reports for leadership and auditors.





• Continuous Improvement





• Stay current with Microsoft security roadmap and emerging threats.


• Optimize policies based on analytics, user behavior, and evolving business needs.

Required Qualifications

• Experience





• 5+ years in information security with a focus on data protection and cloud security.


• Hands-on experience with Microsoft Purview DLP, Microsoft Defender for Cloud Apps (CASB), and Microsoft 365 security ecosystem.





• Technical Skills





• Strong understanding of data classification, sensitivity labels, and adaptive protection.


• Familiarity with SIEM integration, incident response workflows, and regulatory compliance (e.g., GDPR, HIPAA).





• Certifications (Preferred)





• Microsoft Certified: Information Protection Administrator Associate


• Microsoft Certified: Security Operations Analyst Associate


• CISSP or equivalent.

Preferred Attributes

• Excellent analytical and troubleshooting skills.


• Strong communication and documentation abilities.


• Ability to work cross-functionally with IT, compliance, and business teams.