ForgeApply
Try it free

ForgeApply · Job listing

EDAT- Senior Data Security Engineer (Data Rights Management - DRM)- Tampa, FL

Barbaricum

Tampa, FL, UShybrid

Apply in about a minute — without sacrificing quality.

ForgeApply autofills this application and tailors your resume to this exact posting. You review everything before it's sent. Free trial, no card required.

About this role

Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 17 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines. Founded in 2008, our mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent.

Headquartered in Washington, DC's historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation's most complex and rewarding challenges. Join our team.

Barbaricum is currently seeking a Senior Data Security Engineer (Data Rights Management) to serve as a technical leader supporting the USSOCOM Enterprise Development, Application, and Training (EDAT) Zero Trust Data Team. This position is responsible for designing, implementing, and maintaining enterprise Data Rights Management (DRM) and data-centric security capabilities that protect sensitive information throughout its lifecycle in accordance with the Department of Defense (DoD) Zero Trust Strategy.

The Senior Data Security Engineer works closely with cybersecurity architects, ICAM engineers, cloud engineers, system owners, and mission partners to implement data protection controls that enforce least privilege, continuous verification, and policy-based access to Controlled Unclassified Information (CUI) and other sensitive data across on-premises and cloud environments.

Key Responsibilities

• Design, implement, and sustain enterprise Data Rights Management (DRM) solutions supporting the DoD Zero Trust Data Pillar.

• Engineer data-centric security controls that protect sensitive information regardless of location, device, or user.

• Configure and manage encryption, labeling, classification, access control, and persistent protection technologies for enterprise data.

• Implement Microsoft Purview Information Protection, Microsoft Purview Data Loss Prevention (DLP), Microsoft Purview Information Governance, Microsoft Purview Insider Risk Management, Microsoft Defender for Cloud Apps, and related Microsoft 365 security technologies.

• Develop and maintain enterprise data classification schemas, sensitivity labels, protection templates, and automated labeling policies.

• Integrate DRM capabilities with Identity, Credential, and Access Management (ICAM) solutions to enforce attribute-based and role-based access controls.

• Collaborate with Zero Trust architects to implement policy decision points (PDPs), policy enforcement points (PEPs), and continuous authorization mechanisms supporting secure data access.

• Develop data protection strategies supporting cloud, hybrid, and on-premises environments.

• Implement and maintain data loss prevention (DLP) policies for email, endpoints, cloud applications, collaboration platforms, and removable media.

• Support secure collaboration using Microsoft 365, SharePoint Online, Teams, Exchange Online, OneDrive, and Azure services.

• Evaluate enterprise data flows and recommend security controls that reduce organizational risk while supporting operational requirements.

• Perform security assessments, gap analyses, and technical evaluations of DRM and data protection technologies.

• Develop engineering documentation including system design documents, implementation plans, standard operating procedures (SOPs), technical reports, and architecture diagrams.

• Support Authority to Operate (ATO), RMF, and cybersecurity compliance activities.

• Participate in architecture reviews, security engineering working groups, technical interchange meetings, and Zero Trust planning sessions.

• Mentor junior engineers and provide technical leadership across the Data Team.

Required Qualifications

• Active Top Secret/SCI security clearance.

• Must be eligible to maintain access to USSOCOM systems and facilities.

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or a related technical field (or equivalent experience).

• Minimum of 10 years of progressively responsible cybersecurity or information security engineering experience.

• Experience implementing enterprise Data Rights Management (DRM), Information Rights Management (IRM), or Enterprise Digital Rights Management (EDRM) technologies.

• Strong understanding of DoD Zero Trust principles, architecture, and implementation guidance.

• Experience securing data across Microsoft 365, Azure, hybrid cloud, and enterprise environments.

• Experience implementing Microsoft Purview Information Protection, DLP, sensitivity labeling, and information governance capabilities.

• Experience with data classification, encryption, key management, and data lifecycle management.

• Experience integrating security solutions with Microsoft Entra ID (Azure AD), Conditional Access, Privileged Identity Management (PIM), and ICAM architectures.

• Knowledge of NIST SP 800-53, NIST SP 800-207 (Zero Trust Architecture), DoD Zero Trust Reference Architecture, RMF, and CMMC concepts.

• Strong knowledge of encryption technologies, PKI, certificate management, and secure information sharing.

• Experience troubleshooting complex enterprise security implementations.

Ready to apply to Barbaricum?

Apply in about a minute

Similar jobs

More like this: Security & Cybersecurity Jobs · Browse all jobs