Data Protection Engineer June 1, 2026 Position Summary The data protection engineer is responsible for designing, implementing and operating technical and governance controls to protect sensitive data across the organization. The role spans data classification, DLP, data security posture management (DSPM), data governance and insider risk management, ensuring effective protection of sensitive data across endpoints, email, cloud platforms, SaaS applications and collaboration tools. Essential Job Duties
- Administer, configure, and optimize the Varonis Data Security Platform to provide enterprise\-wide visibility into sensitive data, user activity, permissions, and security risks across on\-premises and cloud data repositories.
- Implement and maintain Varonis Data Classification Engine policies to discover, classify, and monitor regulated and sensitive data, including PII, PHI, PCI, financial, and intellectual property assets across Microsoft 365, Windows file shares, NAS platforms, and cloud storage environments.
- Design, deploy, and tune Varonis Data Security Posture Management (DSPM) capabilities to identify overexposed data, stale data, excessive permissions, orphaned accounts, and other data security risks; drive remediation efforts in partnership with data owners and business stakeholders.
- Develop and maintain security policies, s, dashboards, and reporting to measure data risk exposure, access governance maturity, data owner accountability, and overall control effectiveness.
- Integrate Varonis with enterprise security technologies including Microsoft Entra ID (Azure AD), Active Directory, Microsoft Defender, SIEM, SOAR, CASB, and DLP solutions to improve visibility, correlation, and response capabilities.
- Perform regular reviews of sensitive data repositories, access control lists (ACLs), group memberships, and entitlement models to ensure compliance with security standards, regulatory requirements, and organizational policies.
- Contribute to continuous improvement initiatives focused on data protection, data governance, access governance, security automation, and risk reduction across hybrid and cloud environments.
- Provide technical support for data security architecture, secure collaboration initiatives, and regulatory compliance efforts related to data protection and privacy requirements. Skills and Experience
- Hands\-on experience administering and supporting the Varonis Data Security Platform, including DatAdvantage, Data Classification Engine, DataPrivilege, Automation Engine, and Threat Detection \& Response.
- Solid understanding of data security, data governance, data classification, DSPM, DLP, access governance, and insider risk management principles.
- Experience securing data across Microsoft 365, SharePoint Online, OneDrive, Teams, Exchange Online, Windows file servers, and NAS platforms such as NetApp, Dell EMC Isilon, or similar technologies.
- Knowledge of Active Directory, Microsoft Entra ID, NTFS permissions, security groups, access control models, and identity governance concepts.
- Familiarity with security monitoring, threat hunting, incident response, and forensic investigations involving sensitive data access and exfiltration events.
- Experience integrating security platforms with SIEM, SOAR, CASB, DLP, IAM, and endpoint security solutions.
- Strong analytical and troubleshooting skills with the ability to investigate complex data access and security issues using logs, metadata, and behavioral analytics.
- Experience developing metrics, dashboards, and executive reporting to communicate security posture, risk trends, and remediation progress.
- Strong verbal and written communication skills with the ability to translate technical findings into business\-focused risk discussions.
- Demonstrated commitment to automation, operational efficiency, and continuous improvement of data security controls and processes. Education Requirements Bachelor s degree in computer science, IT engineering or a related technical field. Master s degree in cybersecurity, data security or information assurance is a plus. Experience Requirements
- 3\-5 years of experience in information security with hands\-on experience in data protection, DLP or DSPM.
- Solid understanding of data classification, data lifecycle management, data minimization and access control models.
- Experience operating security controls in enterprise, cloud\-first or regulated environments.
- Experience working cross\-functionally with security operations center, IT, legal, privacy, HR and business stakeholders. Certification Requirements CISSP, CISM, CIPP and/or CIPM is a plus. Vendor/technology certification (DLP, CASB, DSPM from leading security platforms) is a plus.
cybersecurity,varonis,data loss prevention,access control,information security,
UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future\-proof philosophy, UST embeds innovation and agility into their clients’ organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.