DLP & Privileged Access Engineer

OverviewJoin to apply for the DLP & Privileged Access Engineer role at Network Designs, Inc.We are seeking a hands-on engineer to design, implement, and maintain enterprise Data Loss Prevention and endpoint privilege management controls.About NDiNetwork Designs, Inc. (NDi) is a leading Federal contractor that designs, develops, and delivers information technology and network solutions for government customers. Founded in 1985, NDi values collaboration, career growth, and winning ideas, and believes its people are the cornerstone of success.ResponsibilitiesConfigure and tune Microsoft Purview DLP policies to detect and prevent sensitive data exfiltration.Design and implement sensitivity label taxonomies and Rights Management Services (RMS) protection for email, files, and SharePoint content.Automate Purview record-management workflows and data-classification scans; troubleshoot connector and scanning issues.Deploy and maintain CyberArk Endpoint Privilege Manager (EPM) agents; define least-privilege policies, application allow-lists, and Just-in-Time elevation workflows.Implement Phosphorus assessment frameworks; automate evidence collection and reporting for compliance controls.Develop Infrastructure-as-Code modules and scripts (PowerShell, Python, Ansible) to deploy and configure DLP, EPM, and Phosphorus tegrate security tool deployments into CI/CD pipelines (e.g., Jenkins, Azure DevOps).Build dashboards and alerts for DLP incidents, EPM events, and compliance exceptions; triage incidents and coordinate remediation.Author runbooks and technical guides, maintaining version control of automation artifacts.Qualifications And ExperienceBachelor's degree in Computer Science, Cybersecurity, Information Systems, Engineering, or related IT field.2+ years of hands-on experience with automation and CI/CD for security/configuration tools.Proven expertise in Microsoft Purview DLP and label-based protection.Experience deploying and managing CyberArk Endpoint Privilege Manager.Familiarity with Phosphorus compliance automation or similar assessment platforms.Strong scripting skills (PowerShell, Python) and Infrastructure-as-Code practices.Excellent troubleshooting, documentation, and communication skills.Preferred QualificationsCDM program understanding and its phases (vulnerability management, configuration management, identity and access management, incident response).Zero Trust principles, including micro-segmentation, least-privilege access, and continuous verification.Experience with NIST RMF (SP 800-37/SP 800-53) from categorization through monitoring.Familiarity with CASM model for evaluating control effectiveness and mission impact.Knowledge of FISMA requirements and annual reporting processes.Experience applying FedRAMP security controls for cloud providers and managing authorization packages (SSP, SAR, POA&M).Understanding of DISA STIG and SCAP standards for system hardening and automated compliance checking.Ability to map organizational controls to CISA CDM dashboard metrics.Required Tools And TechnologiesMicrosoft Purview DLPCyberArk EPMPhosphorusSplunkAnsibleTerraformPowerShellPythonJenkinsServiceNowDevOps best practicesCompensation And BenefitsCompetitive benefits including comprehensive health, dental, vision, and life insurance; 401(k) with matching; paid leave and holidays; professional development and education benefits.Veterans First CommitmentAs a Service-Disabled Veteran-Owned Small Business (SDVOSB), NDi is dedicated to hiring veterans and supporting their mitment To DiversityNDi is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, citizenship, or other protected status.Apply NowTake advantage of this opportunity to join one of the fastest-growing companies in Federal contracting.Salary: $84,727 - $95,045 per year #J-18808-Ljbffr

Created: 2025-09-17