Role description
Data Security Architect
Role Purpose
The Data Security Architect is responsible for the design and delivery of the organizations Microsoft Purviewbased data security program The role is responsible for translating data governance policy into scalable technical controls across information protection data loss prevention and information risk management working closely with governance compliance and operational teams to ensure the program is fit for purpose and sustainable
Key Responsibilities
Design and own the endtoend Microsoft Purview architecture covering Sensitive Information Types SITs sensitivity labels data classification DLP policies and data lifecycle controls
Establish technical standards and governance frameworks that guide engineers and operational teams in consistent policyaligned implementation
Work with the Data Governance function to translate data protection policies and regulatory requirements into implementable Purview configurations
Provide technical guidance on the DLP enforcement strategy including policy scope workload coverage and the approach to targeted data scanning
Define integration patterns across the Microsoft 365 estate and advise on how platform capabilities including Adaptive Protection and Insider Risk Management can be used to strengthen the organisations data security posture
Engage with stakeholders to communicate program direction architectural decisions and tradeoffs in a clear and accessible way
Stay current on the Microsoft Purview roadmap and identify platform developments that can advance program objectives or address gaps
Skills Experience
Handson experience with Microsoft Purview sensitivity labels SITs autoclassification and DLP policy designAbility to communicate technical design clearly to nontechnical stakeholders and senior leadership
Understanding of Microsoft 365 data security capabilities across Exchange SharePoint OneDrive Teams and EndpointWorking knowledge of relevant data protection frameworks eg GDPR industryspecific regulations
Experience designing data classification frameworks and translating governance policy into technical controlsExperience leading technical solution in enterprise security or governance programs
Familiarity with Insider Risk Management and how it integrates with DLP and broader M365 signalsMicrosoft certifications desirable SC401 SC100 or equivalent
Data Security Engineers 4
REPORTS TO
Data Security ArchitectLEVEL
Mid SeniorHEADCOUNT
4 FTCPROGRAM
Microsoft 365 Security Governance
Role Purpose
The Data Security Engineer is responsible for the handson configuration deployment and daytoday operation of data security controls across the Microsoft Purview estate The role bridges architectural design and operational delivery building and maintaining the policies processes and tooling that keep the program running effectively
Key Responsibilities
Configure and maintain Microsoft Purview policies including Sensitive Information Types SITs sensitivity labels autolabelling rules and DLP policies across Exchange SharePoint OneDrive Teams and Endpoint
Support deployment and ongoing management of Endpoint DLP Microsoft Defender for Cloud Apps MDCA and the MIP Scanner for a large Enterprise Environment
Manage the Sensitive Data Discovery process maintaining SIT accuracy reviewing scan outputs and feeding findings into classification and DLP policy updates
Monitor Data Exposure Management findings identify highrisk repositories and coordinate remediation with data owners and the Digital Workplace team
Triage DLP policy match s resolve false positives and escalate emerging patterns or rule changes to the Architect
Deliver training and guidance to the Service Desk and Digital Workplace support teams to build operational capability around data security tooling and escalation procedures
Produce regular operational metrics and reporting covering policy match rates classification coverage exposure findings and SIT performance
Maintain configuration documentation knowledge base articles and operational runbooks to support program run activities and governance and compliance reviews
Skills Experience
Practical experience configuring Microsoft Purview SITs sensitivity labels autolabelling and DLP policiesComfortable producing operational reports and dashboards for program stakeholders
Familiarity with Endpoint DLP Microsoft Defender for Cloud Apps MDCA and MIP ScannerGood communication skills able to explain policy behavior to nontechnical support teams
Experience with SharePoint and OneDrive data management including sharing controls and site structuresMicrosoft certifications desirable SC401 MS500 or equivalent
Skills
Mandatory Skills : DLP - Microsoft DLP
About LTM
LTM is an AI-centric global technology services company and the Business Creativity partner to the world’s largest and most disruptive enterprises. We bring human insights and intelligent systems together to help clients create greater value at the intersection of technology and domain expertise. Our capabilities span integrated operations, transformation, and business AI — enabling new ways of working, new productivity paradigms, and new roads to value. Together with over 87,000 employees across 40 countries and our global network of partners, LTM — a Larsen & Toubro company — owns business outcomes for our clients, helping them not just outperform the market, but to Outcreate it. Please also note that neither LTM nor any of its authorized recruitment agencies/partners charge any candidate registration fee or any other fees from talent (candidates) towards appearing for an interview or securing employment/internship. Candidates shall be solely responsible for verifying the credentials of any agency/consultant that claims to be working with LTM for recruitment. Please note that anyone who relies on the representations made by fraudulent employment agencies does so at their own risk, and LTM disclaims any liability in case of loss or damage suffered as a consequence of the same. Recruitment Fraud Alert - https://www.ltimindtree.com/recruitment-fraud-alert/
