Job Description
Job Title: Insider Risk Management Engineer (Microsoft Purview)
Role Summary
Responsible for end-to-end implementation and operationalization of Microsoft Insider Risk Management (Purview) solutions to detect, investigate, and mitigate insider threats across the organization.
Key Responsibilities
• Lead implementation lifecycle of Microsoft Insider Risk Management:
• Requirements gathering & risk assessment
• Solution design & policy architecture
• Configuration & deployment
• Testing & tuning
• Go-live & hypercare support
• Configure Insider Risk policies (Data Leaks, Data Theft, Security Policy Violations, etc.)
• Integrate with:
• Microsoft Purview DLP
• Microsoft Defender
• Microsoft Sentinel (SIEM)
• HR data connectors
• Develop alert triage workflows and investigation procedures
• Reduce false positives through policy tuning and threshold optimization
• Create dashboards and reports for risk visibility
• Collaborate with SOC, HR, Legal, and Compliance teams
• Document architecture, SOPs, and governance processes
Required Skills
• 3–6 years in cybersecurity or data protection
• Hands-on experience with Microsoft Purview Insider Risk Management
• Strong knowledge of:
• DLP & data classification
• Microsoft 365 security stack
• KQL & log analysis
• Understanding of insider threat frameworks (NIST, ISO)
• Experience in stakeholder coordination during security tool deployment
