Posted 1 day ago
Public Trust
Unspecified
Unspecified
IT - Database
Remote/Hybrid• (Off-Site/Hybrid)
The Remediation Engineer serves as the primary technical resource responsible for the hands-on deployment, configuration, and integration of BigID and Microsoft Purview to secure the Client's Microsoft 365 ecosystem, with an initial engagement scope strictly focused on SharePoint Online and OneDrive for Business. Reporting directly to the Remediation Lead, this individual will execute the daily technical operations of the project, including tuning classification scanners, applying sensitivity labels, configuring Data Loss Prevention (DLP) enforcement policies, and performing file relocation workflows for Critical, Moderate, and Stale data. The Engineer is responsible for troubleshooting integration issues, validating system performance against architectural requirements, and collaborating with vendor support to ensure the accurate discovery, tagging, and protection of unstructured data within these specific repositories.
Responsibilities
For more than 20 years, NewGen Technologies has solved our clients' toughest IT challenges with integrity, security, and outstanding service by delivering both technology and talent. We have helped secure borders, have used artificial intelligence (AI) to fight terror, aided the identification of criminals, and have helped to prevent crime through the introduction of biometrics. Our team of Highly Cleared Specialists have hard-to-find skills and expertise in a wide spectrum of technologies to provide solutions that transform business processes and solve problems of national significance. #CJ
Responsibilities
- Platform Configuration, Tuning, and Policy Management (40%): Perform hands-on configuration of BigID scanners and Microsoft Purview policies; tune classification logic, sensitivity labels, and DLP rules to ensure high-fidelity detection with minimal false positives
- Remediation Execution (Labeling, Enforcement, and Relocation) (30%): Execute the technical workflows to apply sensitivity labels, enforce blocking/encryption actions, and relocate stale or high-risk files (ROT) to secure repositories
- Integration Troubleshooting and Vendor Support (15%): Diagnose and resolve technical issues related to API connectivity, scan failures, or label mismatches; work directly with vendor support tickets to resolve product bugs or limitations
- Scripting, Automation, and Documentation (15%): Develop PowerShell scripts to automate bulk remediation tasks or reporting; maintain detailed technical "runbooks" and configuration documentation for all implemented controls
- Mus be a US Citizen
- Bachelor's degree in Computer Science, Information Technology, or a relevant technical field + a minimum of 2-3 years of hands-on experience in data security, system administration, or network engineering
- Possess one of the following: Security + CE, CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, CND, CASP, CE, CISSP, CSSLP
- BigID: Hands-on experience deploying and configuring BigID scanners for unstructured data sources. Proficient in troubleshooting connectivity issues, configuring "Hyperscan" performance tuning, and building custom classifiers using RegEx or NLP training sets.
- Microsoft Purview: Demonstrated ability to implement data protection controls within the M365 Compliance center. Must be capable of creating Sensitivity Labels, configuring auto-labeling policies for SharePoint OneDrive, and testing DLP rule behavior (eg blocking external sharing) in a live environment.
- Scripting & Automation: Proficiency is PowerShell is essential. Candidate needs to be able to write scripts to interact with the Microsoft Graph API or BigID API for bulk-tasks, such as generating reports on labeled files or automating the relocation of "stale" data to archive folders.
- Operational Troubleshooting: Strong analytical skills to diagnose integration breaks between BigID and Purview (eg labels not applying, scan failures). Ability to read audit logs and work with vendor support tickets to resolve technical blockers.
- Team Collaboration & Communication: Excellent written and verbal communication skills are required for documenting configuration changes ("Runbooks") and effectively communicating technical progress or blockers to the Remediation Lead and project stakeholders
- 5+ years of experience
- Certifications:
- BigID Certification: Active Certified BigID Security Professional is highly preferred (specifically covers Remediation & Labeling apps). Alternatively, completion of the BigID Privacy, Security, & Data Governance track would be accepted.
- Microsoft Compliance Certification: Active Microsoft Certified: Information Protection Administrator Associate (SC-400) is strongly desired
- CISSP
- Understanding and experience with NIST Special Publication [SP] 800-171
- Familiarity and understanding of United States Executive Order [EO] 14117
For more than 20 years, NewGen Technologies has solved our clients' toughest IT challenges with integrity, security, and outstanding service by delivering both technology and talent. We have helped secure borders, have used artificial intelligence (AI) to fight terror, aided the identification of criminals, and have helped to prevent crime through the introduction of biometrics. Our team of Highly Cleared Specialists have hard-to-find skills and expertise in a wide spectrum of technologies to provide solutions that transform business processes and solve problems of national significance. #CJ
group id: NEWGEN
