Security Access Control Engineer

Job Summary:

We are seeking a highly skilled IT Security Access Control Engineer to join our team. The ideal candidate will be responsible for managing our organization's user data access security and compliance, as well as data breach incident response efforts, with relevant expertise in DLP, server-to-server encryption, and data security configuration for platforms such as Microsoft 365 Defender's Compliance module.

Key Responsibilities:

1. Develop and implement user data access security and DLP related policies, procedures, and standards to ensure compliance with internal policies, regulatory requirements, and industry best practices.
2. Work with internal stakeholders and data stewards in assessing and managing risks to the organization's data by recommending and implementing appropriate risk mitigation strategies.
3. Implement and maintain effective security controls, including server-to-server encryption, data masking, classification and labeling, and access controls.
4. Monitor security systems and tools, including Microsoft 365 Defender's Compliance module, to detect potential data breaches and respond promptly to incidents by analyzing and correlating data.
5. Investigate security incidents and breaches and recommend remedial actions to prevent future occurrences.
6. Develop and maintain compliance reports and dashboards.
7. Train and educate employees on data security best practices and policies.
8. Stay up-to-date with the latest security threats, trends, and technologies to continuously improve the organization's data security and compliance posture.
9. Design and develop data breach incident response management workflow in collaboration with key internal stakeholders.

Requirements:

1. Bachelor's degree in computer science, information security, or a related field.
2. 5+ years of experience in data security, compliance management, and Microsoft 365 Defender's Compliance module.
3. Strong knowledge of security best practices, standards, and frameworks (e.g., ISO 27001, NIST, CIS).
4. Experience with security tools and technologies such as firewalls, intrusion detection and prevention systems, and security information and event management (SIEM) systems.
5. Excellent problem-solving and analytical skills.
6. Strong communication and collaboration skills.

If you have a passion for data security and compliance, we encourage you to apply for this exciting opportunity.