Staff Cybersecurity Architect - Data Security & Data Loss Prevention

About the Role

The Data Security & Data Loss Prevention architect operates at the intersection of architecture, engineering, and audit readiness, proactively translating regulatory and business risk into deployable, testable, and measurable controls. The architect will champion controls that are not only well-designed but operationalized, continuously validated, and demonstrably effective.

What You Will Do

• Develop, maintain, and evolve enterprise data security and data loss prevention architectures aligned to business objectives, regulatory requirements, and data classification standards.
• Champion the integration of data-centric security controls across endpoint, identity, collaboration, storage, and data platforms, ensuring secure by default and least privilege principles.
• Design and operationalize Microsoft Purview Information Protection and DLP capabilities, including sensitivity labeling, classification, policy enforcement, and user experience considerations.
• Architect and implement Microsoft Defender capabilities (Endpoint, Identity, Office 365, Cloud Apps) to protect data throughout its lifecycle.
• Serve as a senior technical authority for data security and DLP across Windows, macOS, Windows Server, and Linux environments, ensuring consistent enforcement across heterogeneous platforms.
• Integrate Microsoft Security capabilities with complementary platforms such as Varonis Data Security to provide comprehensive data protection.
• Author and maintain data security and DLP standards, reference architectures, and technical guardrails aligned to NIST and internal security frameworks.
• Convert business risks and regulatory obligations into technical requirements and traceable, measurable mitigation strategies.
• Evaluate new platforms, tools, and vendors for strategic fit, security posture, and architectural impact.
• Provide technical leadership, mentorship, and escalation support for complex data security and DLP challenges.
• Communicate control posture, risks, and recommendations clearly to engineering, audit, and leadership stakeholders.
• Continuously assess and improve data security posture through metrics, dashboards, and control validation.

What We Are Looking For

• Bachelor’s degree in arts/sciences (BA/BS) or equivalent experience.
• 8+ years of progressive experience in information technology security/infrastructure engineering/architecture.
• 6+ years of data security and data loss prevention control implementation/architecture experience focused on technical control development.
• Experience with Microsoft Purview Information Protection and DLP capabilities.
• Experience with Microsoft Defender capabilities (Endpoint, Identity, Office 365, Cloud Apps).
• Strong understanding of data security principles, including secure by design and least privilege.
• Strong understanding of cloud security, data loss prevention, and identity access management.
• Active CIPT, CDPSE, CISSP certification or equivalent.
• Excellent communication and collaboration skills.

Nice to Have

• Additional certifications (e.g., Microsoft SC100/SC400/AZ500, Varonis DSE, CDP, CISA, GIAC, CCSP).
• Experience with Varonis Data Security.
• Experience with NIST and internal security frameworks.
• Experience with metrics, dashboards, and control validation.

Benefits and Perks

• Opportunity to work with a multinational team of intelligent, motivated, and collaborative people.
• Comprehensive data protection and security solutions.
• Professional development and growth opportunities.
• Collaborative and dynamic work environment.
• Flexible work arrangements and remote work options.
• Access to cutting-edge technologies and tools.
• Competitive compensation and benefits package.

• Tip: Showcase your expertise in data security and data loss prevention by highlighting your experience with Microsoft Purview Information Protection and DLP capabilities.
• Tip: Be prepared to discuss your understanding of cloud security, data loss prevention, and identity access management, and how you can apply these concepts to real-world scenarios.
• Tip: Emphasize your ability to communicate complex technical information to non-technical stakeholders, and provide examples of how you have done so in the past.
• Tip: Highlight your experience with metrics, dashboards, and control validation, and explain how you have used these tools to continuously assess and improve data security posture.
• Tip: Research RGA's company culture and values, and be prepared to discuss how your own values and work style align with those of the company.
• Tip: Be prepared to provide specific examples of how you have designed and implemented robust data security architectures, and how you have measured their effectiveness.
• Tip: Consider obtaining additional certifications, such as Microsoft SC100/SC400/AZ500 or Varonis DSE, to demonstrate your expertise and commitment to the field.