Job Description
The Senior Data Protection Engineer provides thought leadership and strengthens the cybersecurity team in protecting the organization's sensitive data across endpoints, networks, cloud, and email. This role designs, implements, and optimizes enterprise Data Loss Prevention (DLP) solutions-with deep expertise in the Microsoft data protection suite (Microsoft Purview), along with Varonis and cloud data protection tools such as Wiz across environments like AWS-to safeguard protected health information (PHI) and other regulated data, while performing data classification, monitoring, incident response, and policy tuning and mentoring junior team members. While DLP is the primary focus, the successful candidate will also support cybersecurity incident response and other initiatives across a range of security domains, making well-rounded cybersecurity knowledge essential, and will share in some on-call responsibilities.
Duties and Responsibilities
Lead efforts in designing, deploying, and maintaining enterprise Data Loss Prevention (DLP) solutions across endpoint, network, cloud, and email channels.
Administer, configure, and optimize Microsoft Purview and Varonis to classify, monitor, and protect sensitive and regulated data.
Configure and manage Microsoft Purview Insider Risk Management to detect, investigate, and mitigate risky user activity and potential insider threats.
Design and enforce email DLP policies to prevent the unauthorized transmission of PHI and other sensitive data via email and other messaging channels.
Implement and manage data protection across cloud environments such as AWS, leveraging cloud security tools such as Wiz to discover, classify, and safeguard sensitive data and remediate data exposure risks.
Develop, enforce, tune, and continuously improve DLP policies, rules, and data classification schemes to minimize false positives and data exfiltration risk.
Investigate, triage, and respond to DLP alerts and data loss incidents, including root cause analysis and remediation in coordination with privacy, compliance, and legal teams.
Work as part of a dynamic team responsible for cybersecurity incident response and other initiatives across a range of security domains, participating in the investigation, containment, and remediation of security incidents.
Participate in a rotating on-call schedule to support incident response and time-sensitive security events outside of standard business hours.'
Collaborate with teams throughout ISS, as well as Privacy and Compliance, to ensure the protection of PHI and adherence to HIPAA and other regulatory requirements.
Provide mentorship and guidance to junior and mid-level cybersecurity engineers.
Participate in the development and implementation of cybersecurity strategies and policies.
Bachelor's degree or higher in Cybersecurity, Information Technology, or a related field preferred; equivalent experience will be considered for exceptional candidates.
Relevant certifications are highly desirable, including the Microsoft Certified: Information Protection and Compliance Administrator Associate (SC-400) for data protection expertise, as well as broad cybersecurity certifications such as CISSP, GIAC GSEC, or CompTIA Security+ that demonstrate overall cybersecurity knowledge.
Knowledge and Experience
Strong understanding of Data Loss Prevention principles, data classification, and information protection practices.
Working knowledge of HIPAA and its requirements for protecting electronic protected health information (ePHI) in a hospital or healthcare environment.
Deep, hands-on knowledge of the Microsoft data protection suite and its capabilities-including Microsoft Purview DLP, Information Protection, sensitivity labeling, and Insider Risk Management-along with Varonis and other data security technologies across endpoint, network, cloud, and email.
Extensive experience implementing and operating enterprise DLP programs, including policy creation, data classification, and incident response.
Experience protecting data in cloud environments such as AWS, including the use of cloud security and data protection tools such as Wiz.
Hands-on experience with cybersecurity incident response, including the investigation, containment, and remediation of security incidents as part of a team.
Solid overall knowledge of cybersecurity principles and practices beyond data protection, with the ability to contribute across a broad range of security domains.
3-5 years of experience in Data Loss Prevention, data security, or information technology in a large organization, preferably healthcare.
Strong analytical and problem-solving skills.
Excellent communication and teamwork abilities.
Ability to manage cybersecurity projects within a healthcare organization, balancing security objectives with operational and regulatory requirements.
Ability to work effectively with both technical and non-technical team members, communicating complex security concepts to a range of audiences.
Ability to learn and adapt to new technologies quickly.
Attention to detail and a proactive approach to security.
Skills and Abilities
Strong analytical and problem-solving skills.
Excellent communication and teamwork abilities.
Ability to manage cybersecurity projects within a healthcare organization, balancing security objectives with operational and regulatory requirements.
Ability to work effectively with both technical and non-technical team members, communicating complex security concepts to a range of audiences.
Ability to learn and adapt to new technologies quickly.
Attention to detail and a proactive approach to security.
At Atlantic Health, our promise to our communities is; Anyone who enters one of our facilities will receive the highest quality care delivered at the right time, at the right place, and at the right cost. This commitment is also echoed in the respect, development and opportunities we give to our more than 22,000 team members. Headquarters in Morristown, New Jersey, we are one of the leading non-profit health care systems in the nation. Our facilities and sites of care include:
Atlantic Health Morristown Medical Center, Morristown, NJ
Atlantic Health Overlook Medical Center, Summit, NJ
Atlantic Health Newton Medical Center, Newton, NJ
Atlantic Health Chilton Medical Center, Pompton Plains, NJ
Atlantic Health Hackettstown Medical Center, Hackettstown, NJ
Atlantic Health Goryeb Children's Hospital, Morristown, NJ
Atlantic Health CentraState Healthcare System, Freehold, NJ
Atlantic Medical Group
Atlantic Visiting Nurse
Atlantic Mobile Health
Atlantic Rehabilitation
We have more than 900 community-based healthcare providers affiliated through Atlantic Medical Group.
We have received awards and recognition for the services we have provided to our patients, team members and communities. Below are just a few of our accolades:
Chosen for 17 years by Fortune as one of the magazine's "100 Best Companies to Work For."
Atlantic Health Morristown and Atlantic Health Overlook Named by Newsweek as two of the "World's Best Hospitals" in 2026.
Atlantic Health Morristown and Atlantic Health Overlook ranked within the top three hospitals in New Jersey by U.S. News & World Report's 2025-2026 Best Hospital rankings.
Atlantic Health scored four "A" grades by The Leapfrog Group in its Fall 2025 Hospital Safety Grades, performance measures reflecting errors, accidents, injuries and injections, as well as systems hospitals have in place to prevent harm.
Atlantic Health Morristown and Atlantic Health Overlook are New Jersey's only hospitals to be named among America's 50 Best hospitals by Healthgrades in 2026.
Named by Becker's Healthcare as one of the "165 Top Places to Work in Healthcare - 2026.
Atlantic Health Morristown, Atlantic Health Overlook, Atlantic Health Chilton and Atlantic Health Newton all Forbes Top Hospitals for 2026.
Named by Newsweek as one of America's Greatest Workplaces for Inclusion & Diversity 2025.
Atlantic Health rated LEVEL 9 - 2025 CHIME Digital Health Most Wired.
Atlantic Health offers a competitive and comprehensive Total Rewards package that supports the health, financial security, and well-being of all team members. Offerings vary based on role level (Team Member, Director, Executive). Below is a general summary, with role-specific enhancements highlighted:
Team Member Benefits
Medical, Dental, Vision, Prescription Coverage (22.5 hours per week or above for full-time and part-time team members)
Life & AD&D Insurance.
Short-Term and Long-Term Disability (with options to supplement)
403(b) Retirement Plan: Employer match, additional non-elective contribution
PTO & Paid Sick Leave
Tuition Assistance, Advancement & Academic Advising
Parental, Adoption, Surrogacy Leave
Backup and On-Site Childcare
Well-Being Rewards
Employee Assistance Program (EAP)
Fertility Benefits, Healthy Pregnancy Program
Flexible Spending & Commuter Accounts
Pet, Home & Auto, Identity Theft and Legal Insurance
__
Note: In Compliance with the NJ Pay Transparency Act (effective Sunday, June 1, 2025), all job postings will include the hourly wage or salary (or a range), as well as this summary of benefits. Final compensation and benefit eligibility may vary by role and employment status and will be confirmed at the time of offer.
EEO STATEMENT
Atlantic Health, Inc. is an equal employment opportunity employer and federal contractor or subcontractor and therefore abides by applicable laws to protect applicants and employees from discrimination in hiring, promotion, discharge, pay, fringe benefits, job training, classification, referral, and other aspects of employment, on the basis of race, color, religion, sex (including pregnancy, gender identity and sexual orientation), national origin, citizenship status, disability, age, genetics, or veteran