Data protection engineer

Data Protection Engineer (DAM & Microsoft 365 Security) – Bank – Brussels

Daily rate: €600 - €800

Duration: 12 months

Hybrid: 2 days per week

Start: ASAP

Submit your CV and any additional required information after you have read this description by clicking on the application button.

My banking client is looking for an experienced Data Protection Engineer to join a high-performing Chief Information Security Office on a contract basis. This is a hands-on technical role focused on strengthening enterprise-wide data protection capabilities, with particular emphasis on Database Activity Monitoring (DAM) and the Microsoft 365 security ecosystem, including Microsoft Purview and Microsoft Defender.

Key Responsibilities

• Take ownership of the Microsoft 365 security stack, including Purview and Defender, ensuring a smooth transition and continuity of service
• Support the rollout and operationalisation of Database Activity Monitoring capabilities across the organisation
• Provide technical input into DAM tooling selection, including requirements gathering, vendor evaluation, proof-of-concept support, and implementation planning
• Implement, tune, and optimise detections and alerting to improve security outcomes and reduce false positives
• Establish robust business-as-usual processes, documentation, and runbooks to support production readiness
• Act as the subject matter expert for Microsoft Purview and Defender, including DLP, information protection, investigations, and email security controls
• Support audits, governance activities, and stakeholder reporting by providing evidence and technical insight into in-scope controls

What We’re Looking For

• Proven hands-on experience with Database Activity Monitoring (DAM), including use-case development, alert tuning, operations, and reporting
• Strong practical knowledge of Microsoft 365 security, especially Microsoft Purview and Microsoft Defender
• Experience with Netskope, including CASB/DLP policy configuration, tuning, administration, and incident handling
• Good understanding of Windows environments, Active Directory, and identity-based security controls
• Experience integrating and evaluating security tools in complex enterprise environments
• Knowledge of Microsoft Exchange Online, SharePoint Online, OneDrive, Teams, and associated email security controls such as xirbnpk DMARC, DKIM, SPF, spoofing protection, spam filtering, TLS, and S/MIME
• Familiarity with endpoint protection, DLP platforms, and SIEM/SOAR tools such as Splunk or Cortex XSOAR
• Working knowledge of recognised security frameworks such as ISO/IEC 27001/27002, NIST CSF, NIST SP 800-53, and CIS Controls
• Experience with scripting and automation using tools such as PowerShell, Python, Shell, SQL, or Microsoft Power Platform
• Strong analytical and problem-solving skills, with the ability to create repeatable, maintainable, and auditable solutions
• Clear communication skills and confidence working across engineering, audit, risk, compliance, and business teams
• Ability to thrive in a regulated, audit-driven environment while remaining delivery-focused