Genesis10
Genesis10 is seeking a Senior Cybersecurity Engineer for a 12-month contract position with a client located in the Milwaukee, WI area. This role is hybrid with 3 days a week onsite.
Summary Genesis10 is seeking a Senior Cybersecurity Engineer to design, build, and operationalize enterprise-grade data protection capabilities anchored in Microsoft E5. This role will lead engineering efforts for Microsoft Purview (Information Protection, DLP, eDiscovery/Audit), Sensitivity Labels, and secure-by-default guardrails, integrating enforcement and telemetry across Zscaler, CrowdStrike, and Splunk.
This position supports a high-impact initiative focused on Insider Risk detection and data protection for regulated data (PII/PHI), while accelerating Copilot and Microsoft E5 controls adoption across SaaS and AI workloads.
Pay Rate: $50.00 - $58.00 per hour.
Responsibilities
Engineer Secure-by-Default E5 Data Protection
Design and implement Microsoft Purview DLP policies across endpoints, Exchange, SharePoint, OneDrive, and Teams.
Define and manage Sensitivity Label taxonomy with automated enforcement paths.
Build policy-as-code CI/CD pipelines to version, test, and deploy DLP rules, label configurations, and governance artifacts across environments.
Integrate Security Tooling (Zscaler, CrowdStrike, Splunk)
Integrate Zscaler SSE inspection with Purview controls and route telemetry to Splunk for analytics and detections.
Leverage CrowdStrike telemetry (Falcon/Shield) to correlate endpoint behavior with data movement signals for insider risk and exfiltration use cases.
Develop Splunk dashboards, data models, and correlation searches aligned to data loss and anomalous access scenarios.
Build Automation & Guardrails
Develop automation using Azure Functions, Logic Apps, Graph API, and PowerShell to remediate mislabels, revoke risky shares, and notify data owners.
Implement secure-by-default configuration baselines and drift detection for E5 security controls, including MCAS/Defender for Cloud Apps and Conditional Access.
Operate and Continuously Improve
Own reliability for data protection pipelines, including SLIs/SLOs, runbooks, and incident response playbooks.
Partner with Privacy and Compliance teams to ensure audit-ready controls for eDiscovery, Audit, and exception management.
Continuously improve insider risk detection and response workflows.
Collaborate Across Security & Platform Teams
Work closely with IAM, Insider Risk, and Platform Security teams to align enforcement with business workflows and least-privilege access.
Provide technical leadership and mentorship to engineers and analysts supporting Microsoft E5 tools and controls.
Qualifications
5+ years of engineering experience in enterprise security or platform engineering.
Hands‑on experience with Microsoft E5 security stack, including Purview DLP, Information Protection, and eDiscovery/Audit.
Proven expertise in policy-as-code approaches using GitHub or Azure DevOps.
Strong experience automating administration via Microsoft Graph API and PowerShell.
Demonstrated ability to design secure‑by‑default guardrails while enabling rapid SaaS and AI adoption, including Microsoft Copilot.
Nice to Have
Experience protecting regulated data (PII/PHI) and supporting insider risk investigations.
Production experience with Zscaler (SSE/ZIA/ZPA), CrowdStrike (Falcon APIs/telemetry), and Splunk (CIM, ES).
Experience migrating from legacy DLP platforms (e.g., Forcepoint) to Microsoft Purview.
Familiarity with MCAS/Defender for Cloud Apps, Conditional Access policies, and SSPM evaluations.
Experience supporting HIPAA/PHI audits and exception governance workflows.
Only candidates available and ready to work directly as Genesis10 employees will be considered for this position. Able to work as a W2 employee of Genesis10 (no corp to corp).
If you have the described qualifications and are interested in this exciting opportunity, apply today!
Benefits of Working with Genesis10
Access to hundreds of clients, many of whom have been working with Genesis10 for 5-20+ years.
The opportunity to have a career-home with Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
Access to an experienced, caring recruiting team (with more than 7 years of experience on average).
Behavioral Health Platform
Medical, Dental, Vision
Health Savings Account
Voluntary Hospital Indemnity (Critical Illness & Accident)
Voluntary Term Life Insurance
401K
Sick Pay (for applicable states/municipalities)
Commuter Benefits (Dallas, NYC, SF)
Remote opportunities available
Genesis10 is an Equal Opportunity Employer.
Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#DIG10-NY
#J-18808-Ljbffr
Summary Genesis10 is seeking a Senior Cybersecurity Engineer to design, build, and operationalize enterprise-grade data protection capabilities anchored in Microsoft E5. This role will lead engineering efforts for Microsoft Purview (Information Protection, DLP, eDiscovery/Audit), Sensitivity Labels, and secure-by-default guardrails, integrating enforcement and telemetry across Zscaler, CrowdStrike, and Splunk.
This position supports a high-impact initiative focused on Insider Risk detection and data protection for regulated data (PII/PHI), while accelerating Copilot and Microsoft E5 controls adoption across SaaS and AI workloads.
Pay Rate: $50.00 - $58.00 per hour.
Responsibilities
Engineer Secure-by-Default E5 Data Protection
Design and implement Microsoft Purview DLP policies across endpoints, Exchange, SharePoint, OneDrive, and Teams.
Define and manage Sensitivity Label taxonomy with automated enforcement paths.
Build policy-as-code CI/CD pipelines to version, test, and deploy DLP rules, label configurations, and governance artifacts across environments.
Integrate Security Tooling (Zscaler, CrowdStrike, Splunk)
Integrate Zscaler SSE inspection with Purview controls and route telemetry to Splunk for analytics and detections.
Leverage CrowdStrike telemetry (Falcon/Shield) to correlate endpoint behavior with data movement signals for insider risk and exfiltration use cases.
Develop Splunk dashboards, data models, and correlation searches aligned to data loss and anomalous access scenarios.
Build Automation & Guardrails
Develop automation using Azure Functions, Logic Apps, Graph API, and PowerShell to remediate mislabels, revoke risky shares, and notify data owners.
Implement secure-by-default configuration baselines and drift detection for E5 security controls, including MCAS/Defender for Cloud Apps and Conditional Access.
Operate and Continuously Improve
Own reliability for data protection pipelines, including SLIs/SLOs, runbooks, and incident response playbooks.
Partner with Privacy and Compliance teams to ensure audit-ready controls for eDiscovery, Audit, and exception management.
Continuously improve insider risk detection and response workflows.
Collaborate Across Security & Platform Teams
Work closely with IAM, Insider Risk, and Platform Security teams to align enforcement with business workflows and least-privilege access.
Provide technical leadership and mentorship to engineers and analysts supporting Microsoft E5 tools and controls.
Qualifications
5+ years of engineering experience in enterprise security or platform engineering.
Hands‑on experience with Microsoft E5 security stack, including Purview DLP, Information Protection, and eDiscovery/Audit.
Proven expertise in policy-as-code approaches using GitHub or Azure DevOps.
Strong experience automating administration via Microsoft Graph API and PowerShell.
Demonstrated ability to design secure‑by‑default guardrails while enabling rapid SaaS and AI adoption, including Microsoft Copilot.
Nice to Have
Experience protecting regulated data (PII/PHI) and supporting insider risk investigations.
Production experience with Zscaler (SSE/ZIA/ZPA), CrowdStrike (Falcon APIs/telemetry), and Splunk (CIM, ES).
Experience migrating from legacy DLP platforms (e.g., Forcepoint) to Microsoft Purview.
Familiarity with MCAS/Defender for Cloud Apps, Conditional Access policies, and SSPM evaluations.
Experience supporting HIPAA/PHI audits and exception governance workflows.
Only candidates available and ready to work directly as Genesis10 employees will be considered for this position. Able to work as a W2 employee of Genesis10 (no corp to corp).
If you have the described qualifications and are interested in this exciting opportunity, apply today!
Benefits of Working with Genesis10
Access to hundreds of clients, many of whom have been working with Genesis10 for 5-20+ years.
The opportunity to have a career-home with Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
Access to an experienced, caring recruiting team (with more than 7 years of experience on average).
Behavioral Health Platform
Medical, Dental, Vision
Health Savings Account
Voluntary Hospital Indemnity (Critical Illness & Accident)
Voluntary Term Life Insurance
401K
Sick Pay (for applicable states/municipalities)
Commuter Benefits (Dallas, NYC, SF)
Remote opportunities available
Genesis10 is an Equal Opportunity Employer.
Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#DIG10-NY
#J-18808-Ljbffr