Remote with travel required to client's place of performance in Columbus, OH or Richmond, VA.
Key Responsibilities
- Design, configure, and tune Microsoft Purview and Forcepoint DLP policies, rulesets, and workflows across an enterprise DoD environment
- Provide Tier 3 engineering support for DLP infrastructure including fault isolation, root cause analysis, and incident remediation
- Support the integration of DLP solutions with the broader IT infrastructure including M365, Azure IL4+, SharePoint Online, OneDrive, and Teams
- Perform STIG hardening and maintain configuration compliance across all DLP components in accordance with DISA Secure Technical Implementation Guides
- Assist with data-at-rest scanning operations, false positive reduction, and ongoing performance tuning of DLP platforms
- Manage and execute software updates, firmware patches, and service packs in compliance with DoD IA directives and agency change management processes
- Support the development and submission of required documentation including ECR forms, PPSM forms, LCA forms, and Information Assurance packages
- Participate in scheduled on-call rotation supporting critical DLP infrastructure and incident response activities
- Develop and maintain operational documentation including SOPs, CONOPS, troubleshooting guides, and training materials
- Support remediation workflow automation efforts and assist with Authorization to Operate (ATO) documentation for DoD IL4+ environments
- Coordinate with agency stakeholders including privacy, incident response, vulnerability management, and Information Assurance personnel
- Generate operational status reports for agency leadership and DoD reporting requirements as required
- Ensure all DLP systems maintain compliance with federal data protection standards, DoD IA policies, and applicable regulatory requirements
Required Qualifications
- Minimum seven (7) years of relevant IT and cybersecurity experience
- Active DoD Secret clearance with eligibility for IT-I Critical Sensitive / Tier 5 (T5) investigation
- DoD 8570 IAT Level II certification
- CNDSP-IS certification or equivalent
- Computing Environment (CE) certification and/or hands-on administration experience supporting enterprise DLP platforms
- Hands-on experience implementing and administering Microsoft Purview DLP and/or enterprise DLP platforms within a large-scale environment
- Familiarity with DoD cloud environments including Azure IL4+ and M365 security architecture
- Experience working within DoD change management processes including ECR, PPSM, and LCA documentation
- Strong working knowledge of DISA STIGs and federal IA compliance frameworks
Required Certifications
Candidates must meet DoD 8570/8140 certification requirements prior to start date and maintain certifications for the duration of the contract.
DoD 8570.01 IAT Level II
Candidates must possess at least one of the following certifications:
- CCNA Security
- CySA+
- GICSP
- GSEC
- Security+ CE
- SSCP
- CND
CNDSP-IS
Candidates must possess at least one of the following certifications:
- CEH
- CySA+
- GICSP
- SSCP
- CHFI
- CFR
- Cloud+
- CND
Computing Environment (CE) / DLP Administrator Certification
Candidates must possess hands-on experience and/or certification supporting enterprise Data Loss Prevention (DLP) platforms. Preferred certifications include:
Microsoft Purview
- SC-401 Microsoft Information Protection Administrator
Forcepoint
- Forcepoint DLP Administrator
Proofpoint
- Proofpoint Certified DLP Specialist
Equivalent enterprise DLP platform certifications and documented hands-on administration experience may also be considered.
Preferred Qualifications
- Hands-on experience with Forcepoint DLP administration and policy engineering
- Experience supporting cybersecurity operations within DoD, federal, or regulated enterprise environments
- Experience with DLP remediation workflow automation in a DoD IL4 or higher environment
- Prior work experience within a DoD Component IT environment
- Microsoft certifications including SC-400, AZ-500, or SC-100
- Familiarity with SQL database environments and application-level troubleshooting
- Experience supporting ATO packages in DoD cloud environments
- Experience supporting enterprise cloud security initiatives within Microsoft GCC High or DoD IL4+ environments
- Background with adjacent DLP platforms such as Symantec DLP, Trellix, Digital Guardian, or Broadcom DLP
Clearance Requirement
- Active DoD Secret clearance required
- Must be eligible for IT-I Critical Sensitive / Tier 5 (T5) investigation
- Must meet DoD position sensitivity requirements for access to government systems and environments
This position is contingent upon contract award. Employment is expected to begin upon successful award and funding of the program.