Senior Data Security Engineer at First American

**Who this is for** This is for a seasoned security engineer with deep expertise in the Microsoft 365 stack, looking to take ownership of enterprise-wide data p

Work type: onsite

Location: USA, California, Santa Ana | California Home - G4 | Arizona Home - G3 | Oregon Home - G3 | Nevada Home - G3 | Washington Home - G4 | Colorado Home - G4

Type: Full-time

Summary

**Who this is for** This is for a seasoned security engineer with deep expertise in the Microsoft 365 stack, looking to take ownership of enterprise-wide data protection and risk management strategies. **Key highlights** You will mature the organization's data security posture by implementing advanced DLP strategies, automating sensitivity labeling, and remediating data risks across cloud and on-premise environments. **You might be a good fit if you...** - Have 3+ years of experience in Information Security, specifically with M365 E5 services like Purview and MIP. - Possess a strong understanding of security frameworks such as NIST, ISO27001, and regulatory requirements like PCI-DSS. - Have extensive experience with Active Directory and infrastructure management within a large enterprise. - Are skilled at analyzing data trends to reduce false positives and improve overall security policy enforcement.

Job Description

# Who We Are

Join a team that puts its People First! Since 1889, First American (NYSE: FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For® list for eleven consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit www.careers.firstam.com.

# What We Do

As a Senior Data Security Engineer, you will support and enhance First American’s existing data security processes, standards, and tools across the enterprise. You will work with the Data Security team to reduce risk for the organization by securing data, classifying and labeling sensitive data, and applying encryption or other security controls to protect and ensure appropriate access and use of sensitive data. Additionally, you will work with internal information security and business groups to identify opportunities for continuous improvement and maturity of the Data Security function. You will be joining a team that is looking to mature the tools and technology that we use, as well as the end-to-end data remediation process.



*We are open to remote candidates for this role

What You’ll Do:

• Drive initiatives like expanding the use of Microsoft 365 Information Protection (MIP) and Purview Data Loss Prevention (DLP) for cloud-based collaboration services.


• Own and mature the data classification, sensitivity labeling, and data loss prevention (DLP) strategy to protect confidential, proprietary, regulated, and customer data.


• Support regulatory, audit, and risk management requirements by providing evidence, metrics, and documentation related to data protection controls and policy enforcement.


• Drive continuous improvement of data security controls by tuning policies, reducing false positives, and aligning enforcement to evolving business and regulatory needs.


• Monitor, triage, and investigate alerts and cases; collaborate with HR, Legal, and Security Operations on escalations and remediation actions.


• Solve problems, research alternatives, prepare presentations, drive solutions pertaining to data security across the organization.


• Analyze data and report trends & metrics to business partners (ex: user adoption/labeling activity, high risk users/business units, or risk exposure/risk remediation).


• Assist with the creation, maintenance, and updates of data security process documents, including data remediation, sensitivity labeling, and process/workflows with ServiceNow integration.


• Partner with business units and data stewards to support data security initiatives across the enterprise.


• Be a subject matter expert for questions from end users and business stakeholders on topics such as data security policies, standards, and business processes.


• Participate in evaluation and selection of new technology.

• Minimum 3 years of relevant work experience in Information Security, IT Risk Management


• M365 EMS E5 stack of online services, including but not limited to, Purview DLP, Microsoft Information Protection (MIP), and how these interact with Exchange, SharePoint, OneDrive, and Microsoft Defender (Cloud Apps & Endpoint)


• Extensive experience working with Microsoft technologies and infrastructure, with an emphasis on Active Directory/AAD


• Working knowledge of IT and Information Security control standards and frameworks (CIS, NIST, ISO27001, etc.) as well as financial services regulatory requirements (CCPA, PCI-DSS, etc.)


• Familiarity with RegEx formulas, Sensitive Information Types (SITs), NPI/PI


• Team player with positive energy and good customer service skills


• Ability to work independently, demonstrates initiative, and is a self-starter


• Understanding of modern cyber security methodologies and protocols


• Excellent verbal and written communication skills


• Experience in documenting processes, technical writing, and flow charts


• Manage multiple initiatives simultaneously, with strong ability to prioritize


• Customer focused in the context of balancing risk reduction with business needs


• High attention to detail to manage, analyze and finalize artifacts and documents


• Highly flexible, adapting to changes in priorities and requirements


• Ability to quickly learn, communicate and apply technical concepts


• Demonstrated judgement in effectively dealing with highly sensitive information


• Bachelor’s Degree or equivalent experience

This hiring range is a reasonable estimate of the base pay range for this position at the time of posting. Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements and geographic location. 

Note that the following statements only apply to candidates who will be working from an unincorporated area within Los Angeles County.

First American will consider for employment all qualified applicants, including those with arrest or conviction records, in a manner consistent with the requirements of applicable state and local laws (e.g., the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act).

First American intends to conduct a review of an applicant’s criminal history in connection with a conditional offer. First American reasonably believes that a criminal history may have a direct, adverse and negative relationship with the following material job duties for this position potentially resulting in the withdrawal of the conditional offer of employment: handling of confidential, proprietary or trade secret information belonging to First American or its customers, administrating or facilitating financial transactions, and the ability to meet customer-imposed criminal history requirements.

View this job on nocollar jobs