DLP Engineer

In Cyclad we work with top international IT companies in order to boost their potential in delivering outstanding, cutting edge technologies that shape the world of the future. Currently, we are looking for an experienced DLP Security Engineer to join the Cyber Security team and support the design, deployment, and optimization of enterprise data protection capabilities.

The ideal candidate has strong hands-on expertise with Microsoft Purview DLP, DSPM solutions, IRM modules, and Microsoft Defender for Cloud Apps (MDCA), combined with a solid background in Data Loss Prevention across Microsoft 365, endpoints, and cloud environments.

Project information:

• Location: Warsaw (hybrid)

• Type of employment: B2B contract

• Project languages: English

Key Responsibilities:

• Design, develop, and deploy DLP controls across enterprise environments

• Deploy, configure, and maintain Microsoft Purview / MDCA DLP policies across Microsoft 365, endpoints, and cloud applications

• Create, optimize, and maintain DLP rules, data profiles, and incident workflows

• Reduce false positives and improve detection accuracy through continuous tuning and optimization

• Support data classification, sensitivity labeling, and governance initiatives

• Develop detection rules, threat-hunting use cases, and response playbooks

• Assist SOC analysts during investigations, especially in data exfiltration scenarios

• Integrate Purview, Sentinel, and DLP logs with SIEM and SOC technologies

• Document operational procedures, tuning guides, and testing plans

• Collaborate with internal IT, Cloud, and Security teams to ensure adequate data protection coverage

• Participate in the evaluation and onboarding of new security technologies

Requirements:

• Minimum 5 years of experience in a SOC or Security Engineering environment

• Strong hands-on experience with Microsoft Purview DLP (M365, Endpoint DLP, Cloud Apps)

• Solid understanding of DLP concepts, data classification, and data protection strategies

• Experience with SIEM platforms such as Microsoft Sentinel or Splunk

• Knowledge of scripting languages such as PowerShell, Python, or KQL

• Good understanding of network protocols, encryption, and data exfiltration techniques

• Strong analytical, communication, and problem-solving skills

• Ability to manage multiple projects and work effectively in a collaborative environment

• Proactive mindset and passion for cybersecurity and threat mitigation

Nice to have:

• Experience with CASB/SWG/DLP solutions such as Netskope, Zscaler, Symantec/Broadcom, or Palo Alto

• Familiarity with DSPM platforms such as Wiz, Netskope DSPM, or Varonis

• Experience with EDR solutions such as CrowdStrike or Microsoft Defender for Endpoint

We offer:

• Private medical care with dental care (covering 70% of costs). Family package option possible

• Multisport card (also for an accompanying person)

• Life insurance

• Work with talented engineers on large-scale, technically challenging projects