Data protection engineer

Data Protection Engineer (DAM & Microsoft 365 Security) – Bank – BrusselsDaily rate: €600 - €800Duration: 12 monthsHybrid: 2 days per weekStart: ASAPMy banking client is looking for an experienced Data Protection Engineer to join a high-performing Chief Information Security Office on a contract basis. This is a hands-on technical role focused on strengthening enterprise-wide data protection capabilities, with particular emphasis on Database Activity Monitoring (DAM) and the Microsoft 365 security ecosystem, including Microsoft Purview and Microsoft Defender.Key ResponsibilitiesTake ownership of the Microsoft 365 security stack, including Purview and Defender, ensuring a smooth transition and continuity of serviceSupport the rollout and operationalisation of Database Activity Monitoring capabilities across the organisationProvide technical input into DAM tooling selection, including requirements gathering, vendor evaluation, proof-of-concept support, and implementation planningImplement, tune, and optimise detections and alerting to improve security outcomes and reduce false positivesEstablish robust business-as-usual processes, documentation, and runbooks to support production readinessAct as the subject matter expert for Microsoft Purview and Defender, including DLP, information protection, investigations, and email security controlsSupport audits, governance activities, and stakeholder reporting by providing evidence and technical insight into in-scope controlsWhat We're Looking ForProven hands-on experience with Database Activity Monitoring (DAM), including use-case development, alert tuning, operations, and reportingStrong practical knowledge of Microsoft 365 security, especially Microsoft Purview and Microsoft DefenderExperience with Netskope, including CASB/DLP policy configuration, tuning, administration, and incident handlingGood understanding of Windows environments, Active Directory, and identity-based security controlsExperience integrating and evaluating security tools in complex enterprise environmentsKnowledge of Microsoft Exchange Online, SharePoint Online, OneDrive, Teams, and associated email security controls such as DMARC, DKIM, SPF, spoofing protection, spam filtering, TLS, and S/MIMEFamiliarity with endpoint protection, DLP platforms, and SIEM/SOAR tools such as Splunk or Cortex XSOARWorking knowledge of recognised security frameworks such as ISO/IEC 27001/27002, NIST CSF, NIST SP 800-53, and CIS ControlsExperience with scripting and automation using tools such as PowerShell, Python, Shell, SQL, or Microsoft Power PlatformStrong analytical and problem-solving skills, with the ability to create repeatable, maintainable, and auditable solutionsClear communication skills and confidence working across engineering, audit, risk, compliance, and business teamsAbility to thrive in a regulated, audit-driven environment while remaining delivery-focused