Data Protection Engineer (DAM & Microsoft 365 Security)

About the role

Our client, a leading bank in Brussels, is seeking an experienced Data Protection Engineer to join the Chief Information Security Office on a 12‑month contract. The role is hands‑on and focuses on strengthening enterprise‑wide data protection, particularly through Database Activity Monitoring (DAM) and the Microsoft 365 security ecosystem.

Key responsibilities

• Own the Microsoft 365 security stack (Microsoft Purview, Microsoft Defender) and ensure seamless transition and continuity.
• Drive the rollout and operationalisation of DAM capabilities across the organisation.
• Provide technical input for DAM tooling selection, including requirements gathering, vendor evaluation, PoC support and implementation planning.
• Implement, tune and optimise detections and alerts to improve security outcomes and reduce false positives.
• Establish business‑as‑usual processes, documentation and run‑books for production readiness.
• Act as subject‑matter expert for Microsoft Purview and Defender, covering DLP, information protection, investigations and email security controls.
• Support audits, governance activities and stakeholder reporting with evidence and technical insight.

Required profile

• Proven hands‑on experience with Database Activity Monitoring, including use‑case development, alert tuning and reporting.
• Strong practical knowledge of Microsoft 365 security, especially Microsoft Purview and Microsoft Defender.
• Experience with Netskope CASB/DLP policy configuration and incident handling.
• Good understanding of Windows environments, Active Directory and identity‑based security controls.
• Familiarity with Microsoft Exchange Online, SharePoint Online, OneDrive, Teams and related email security protocols (DMARC, DKIM, SPF, TLS, S/MIME).
• Knowledge of endpoint protection, DLP platforms and SIEM/SOAR tools such as Splunk or Cortex XSOAR.
• Working knowledge of security frameworks (ISO/IEC 27001/27002, NIST CSF, NIST SP 800‑53, CIS Controls).
• Strong analytical, problem‑solving and communication skills, able to work across engineering, audit, risk and business teams.

Required skills

• Database Activity Monitoring (DAM)
• Microsoft Purview
• Microsoft Defender
• Netskope
• Windows, Active Directory
• Microsoft Exchange Online, SharePoint Online, OneDrive, Teams
• DMARC, DKIM, SPF, TLS, S/MIME
• Endpoint protection and DLP platforms
• Splunk, Cortex XSOAR
• ISO/IEC 27001/27002, NIST CSF, NIST SP 800‑53, CIS Controls
• PowerShell, Python, Shell, SQL, Microsoft Power Platform