Consultant, Information Protection - Information Governance

What’s unique about this role?

The Consultant, Information Protection – Information Governance, will focus on the design, customization, and implementation of M365 Purview Data security solutions. This role will support engagements with a wide range of organizations while also working as a member of Lighthouse’s Information Governance Consulting team providing world-class solutions around the Microsoft technology stack.

The Consultant, Information Protection – Information Governance will support client engagements and work in collaboration with Project Manager(s), Directors, Associate Director(s), and Analysts to ensure project requirements are met.

The major focus of this position is delivering consulting services related to the M365 Purview platform with a primary focus on Microsoft Information Protection (MIP), Defender for Cloud Apps, Data Loss Protection (DLP), and Insider Risk Management (IRM). Experience and expertise in the broader information security space is essential, as well as basic understanding of non-Microsoft industry solutions.

What will this person do?

• Provide consulting services for information protection capabilities in the M365 Purview platform, with an emphasis on assessment, high-level design, and implementation of Microsoft Purview Information Protection, Purview Data Loss Prevention, Purview Insider Risk Management, Defender for Cloud Apps, Data Loss Protection (DLP), and Insider Risk Management (IRM).
• Collaborate with and support other information governance associates or 3rd party contractors to execute project tasks.
• Provide support for pre-sales activities relating to Microsoft Purview Information Protection solutions, including conducting client and prospect presentations, demonstrations, solution design, etc.
• Guide organizations on improving their information protection and security posture through fully leveraging their investments in the Microsoft Purview suite of solutions.
• Support internal education and development activities.
• Contribute to strategic discussions regarding building and expanding the information protection practice as well as the broader information governance practice.
• Serve as a subject matter expert in M365 Purview Information Protection solutions.
• Create detailed documentation, including architecture diagrams, implementation plans, and configuration guides.
• Provide regular status updates and reports to project stakeholders, outlining progress, challenges, and recommendations.

Requirements:

• Minimum of 1+ years of professional experience designing and implementing security and/or compliance solutions for M365 including Microsoft 365 Defender, Azure Sentinel, Microsoft Information Protection, Microsoft Cloud Application Security, sensitivity labels, data classification.
• Critical skills for this role include some or all the following: information security, information governance, data loss prevention, data classification and labeling, data privacy, identity and access management, identity governance, app protection, cloud architecture.
• Working with enterprise clients to implement programs for some or all the following: Information protection programs, Insider risk management, Data loss prevention.
• Experience working in an information protection and/or security environment in house or at a consulting organization.
• Knowledge of Microsoft Purview and PowerShell desirable (not required).
• Ability to solve problems and deal with a variety of variables in situations where only limited standards exist.
• Strong analytical and logical skills.
• Effective written and oral communication skills, including having the ability to deal with difficult situations and manage conflicts to successful resolutions.
• Outstanding organizational skills, attention to detail and the ability to multitask.
• Ability to work within timelines. Flexibility and adaptability to handle a changing and growing workload.
• Ability to foster positive and professional relationships at all levels internally and externally.
• Professional certifications are desired: Microsoft Certified: Azure Security Engineer Associate, Microsoft 365 Certified: Security Administrator Associate, Microsoft Certified: Cybersecurity Architect Expert, Microsoft Certified: Information Protection Administrator Associate, Microsoft Certified: Identity and Access Administrator Associate.
• Bachelor’s degree (or equivalent) is preferred, but not a requirement.

Work Environment and Physical Demands

Duties are performed in a typical office environment while at a desk or computer table.

Duties require the ability to use a computer, communicate over the telephone, and read printed material, in a quiet and professional setting.

Duties may require being on call periodically and working outside normal working hours (evenings and weekends).

Key skills/competency

• Information Governance
• Data Loss Prevention (DLP)
• Microsoft Information Protection (MIP)
• Insider Risk Management (IRM)
• M365 Purview
• Cloud Security
• Client Consulting
• Data Classification
• Azure Sentinel
• PowerShell