Sr. Data Security Engineer

Company OverviewDocusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people's lives. With intelligent agreement management, Docusign unleashes business-critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity. Using Docusign's Intelligent Agreement Management platform, companies can create, commit, and manage agreements with solutions created by the #1 company in e-signature and contract lifecycle management (CLM).What you'll doWe are seeking a talented and proactive Data Security Engineer to join our team. In this role, you will be responsible for implementing and guiding best practices across our Data Security strategy. You will design, deploy, and maintain technical controls including data encryption, Data Loss Prevention (DLP), and Data Security Posture Management (DSPM) to ensure the protection of company and customer data. You will collaborate with engineering, product, and security teams to ensure that data protection initiatives are secure, compliant, and aligned with business objectives.This position is an individual contributor role reporting to the Sr Director of AI & Data Security.ResponsibilityImplement and guide best practices across the organization's Data Security strategy, ensuring the confidentiality, integrity, and availability of dataDesign, deploy, and maintain data encryption standards and solutions for data in transit and at rest, managing Key Management Systems (KMS) and PKI infrastructureEngineer and manage Data Loss Prevention (DLP) controls across endpoints, networks, and cloud environments to prevent unauthorized data exfiltrationImplement and operationalize Data Security Posture Management (DSPM) tools to identify, classify, and mitigate risks across cloud data storesCollaborate with cross-functional teams to integrate data security best practices into the software development lifecycle (SDL) and CI/CD pipelinesConduct technical risk assessments and threat modeling specific to data storage, processing, and transmission flowsDevelop and enforce technical guardrails and policies for data handling, access control, and classificationMonitor, detect, and respond to data security incidents, working closely with the detection and response teamsTranslate technical data security risks into business impact and communicate recommendations to stakeholdersJob DesignationHybrid: Employee divides their time between in-office and remote work. Access to an office location is required. (Frequency: Minimum 2 days per week; may vary by team but will be weekly in-office expectation)Positions at Docusign are assigned a job designation of either In Office, Hybrid or Remote and are specific to the role/job. Preferred job designations are not guaranteed when changing positions within Docusign. Docusign reserves the right to change a position's job designation depending on business needs and as permitted by local law.What you bringBasic8+ years of experience in security engineering, with a focus on data security, application security, or infrastructure securityExperience with data encryption standards, protocols (TLS, AES), and key management lifecyclesExperience implementing and managing Data Loss Prevention (DLP) technologies (e.g., Netskope, Zscaler, Symantec)Experience with Cloud Data Security and DSPM tools within major cloud platforms (AWS, Azure, GCP)Experience in programming or scripting languages such as Python, Go, or Java for automation and toolingExperience with data governance, data classification, and secure data handling practicesExperience operationali

Created: 2025-12-16