Data protection engineer

Data Protection Engineer (DAM & Microsoft 365 Security) – Bank – Brussels

Daily rate: €600 - €800

Duration: 12 months

Hybrid: 2 days per week

Start: ASAP

All candidates should make sure to read the following job description and information carefully before applying.

My banking client is looking for an experienced Data Protection Engineer to join a high-performing Chief Information Security Office on a contract basis. This is a hands-on technical role focused on strengthening enterprise-wide data protection capabilities, with particular emphasis on Database Activity Monitoring (DAM) and the Microsoft 365 security ecosystem, including Microsoft Purview and Microsoft Defender.

Key Responsibilities

• Take ownership of the Microsoft 365 security stack, including Purview and Defender, ensuring a smooth transition and continuity of service
• Support the rollout and operationalisation of Database Activity Monitoring capabilities across the organisation
• Provide technical input into DAM tooling selection, including requirements gathering, vendor evaluation, proof-of-concept support, and implementation planning
• Implement, tune, and optimise detections and alerting to improve security outcomes and reduce false positives
• Establish robust business-as-usual processes, documentation, and runbooks to support production readiness
• Act as the subject matter expert for Microsoft Purview and Defender, including DLP, information protection, investigations, and email security controls
• Support audits, governance activities, and stakeholder reporting by providing evidence and technical insight into in-scope controls

What We’re Looking For

• Proven hands-on experience with Database Activity Monitoring (DAM), including use-case development, alert tuning, operations, and reporting
• Strong practical knowledge of Microsoft 365 security, especially Microsoft Purview and Microsoft Defender
• Experience with Netskope, including CASB/DLP policy configuration, tuning, administration, and incident handling
• Good understanding of Windows environments, Active Directory, and identity-based security controls
• Experience integrating and evaluating security tools in complex enterprise environments
• Knowledge of Microsoft Exchange Online, SharePoint Online, OneDrive, Teams, and associated email security xphnsxz controls such as DMARC, DKIM, SPF, spoofing protection, spam filtering, TLS, and S/MIME
• Familiarity with endpoint protection, DLP platforms, and SIEM/SOAR tools such as Splunk or Cortex XSOAR
• Working knowledge of recognised security frameworks such as ISO/IEC 27001/27002, NIST CSF, NIST SP 800-53, and CIS Controls
• Experience with scripting and automation using tools such as PowerShell, Python, Shell, SQL, or Microsoft Power Platform
• Strong analytical and problem-solving skills, with the ability to create repeatable, maintainable, and auditable solutions
• Clear communication skills and confidence working across engineering, audit, risk, compliance, and business teams
• Ability to thrive in a regulated, audit-driven environment while remaining delivery-focused