IT Security Analyst II

Purview Data Classification SME

What you'll do (responsibilities)

• Design the sensitivity label taxonomy

  with Security, Risk, and business stakeholders-names, descriptions, visual markings, and protection behaviors (encryption/permissions) publish clear end?user guidance.

• Run Purview discovery scans

  across pilot OneDrive/SharePoint locations generate a

  baseline sensitivity report

  with PII/PCI/confidential distributions and hot?spot analysis.

• Configure and tune auto?labeling

  (start in simulation mode), refine detection patterns to reduce false positives, and prepare production rollout.

• Partner with Endpoint DLP and Conditional Access teammates

  so labels drive enforcement-DLP rules and label?aware CA/MDCA session controls for pilots.

• Document and operationalize

  : create the DLP triage/runbook, decision logs, and governance quick wins checklist for broader rollout hand off admin/runbooks and metrics dashboards.

• Communicate clearly and often

  : contribute to weekly status, issues/risks, and executive?ready updates as part of the engagement governance cadence.
• Serve as the go-to expert for Microsoft 365 services - including but not limited to SharePoint Online, OneDrive, Teams, Teams Voice, Viva suits, Power Platforms Dynamic 365, Microsoft Purview, Azure AD and etc.

Outcomes you own

• Approved, enterprise?ready label taxonomy

  and user application guidance.

• Baseline sensitivity & risk insights

  for OneDrive/SharePoint (pilot scope) and prioritized remediation recommendations.

• Auto?label accuracy report

  with tuning recommendations and a path to enforcement.

• Operational readiness

  : DLP triage runbook, roles/SLA, and a label?aware enforcement plan aligned to CA/MDCA.

Must?have experience

• 3 to 5 years of hands?on expertise with

  Microsoft Purview Information Protection

  (sensitivity labels, auto?labeling, content scanning) in Microsoft 365.
• Proven delivery of classification programs for

  OneDrive/SharePoint

  , ideally in regulated or financial services environments.
• Practical collaboration with

  Endpoint DLP

  and

  Conditional Access/MDCA

  engineers to achieve label?aware enforcement.
• Implementing Endpoint DLP Solutions: Deploy and configure Microsoft Endpoint DLP solutions using Microsoft Purview, ensuring seamless integration with existing systems.
• Policy Management: Develop, implement, and manage DLP policies tailored to endpoint devices using Microsoft Purview, ensuring data protection and compliance.
• Reporting and Analytics: Generate detailed reports on DLP incidents, trends, and system performance using Microsoft Purview for management review.
• System Maintenance: Perform troubleshooting of endpoint DLP systems within Microsoft Purview to ensure optimal performance.
• Strong stakeholder facilitation and documentation skills (decision logs, runbooks, user guidance)
• #LI-RS3