Data Loss Prevention Subject-Matter Expert/Technical Lead

Job Summary:
Our client is seeking a Data Loss Prevention Subject-Matter Expert / Technical Lead to join their team! This position is located in Bethesda, Maryland. 
 
Duties:

• Lead the design, implementation, and management of Data Loss Prevention (DLP) solutions across enterprise systems, applications, and cloud platforms
• Develop and maintain agency-specific secure configuration baselines for multiple operating systems: Windows, Linux, macOS, enterprise services, applications, and cloud environments: Microsoft 365, AWS, GCP, Azure
• Assess and interpret federal regulations, cybersecurity standards, and agency policies to create effective DLP strategies and secure configuration baselines
• Create, configure, and manage GPOs, MDM tools, and automated configuration controls to enforce DLP policies
• Utilize enterprise scanning tools: Tenable.SC, Nessus, SCAP to validate compliance and detect deviations from DLP policies
• Serve as a technical lead, guiding stakeholders in implementing secure configuration and DLP standards across the enterprise
• Lead collaboration forums and working groups with broad stakeholder groups, including cybersecurity, IT operations, and compliance teams
• Produce professional technical documentation, including business justifications, risk assessments, SOPs, technical guidance, executive briefings, and workflow documentation
• Ensure DLP and configuration standards align with mission-critical business requirements and compliance frameworks
• Mentor team members and provide technical guidance on data protection, secure configuration, and compliance best practices

Desired Skills/Experience:

• Demonstrated advanced knowledge of enterprise configuration standards and compliance frameworks, including CIS Benchmarks, NIST SP 800-53 rev 5, NIST Baseline Checklist Repository, and CISA BOD 25-01 SCuBA Secure Configuration Baselines
• Hands-on experience developing secure configuration baselines across multiple operating systems and enterprise applications
• Proficiency in GPO management, MDM tools, configuration automation, and baseline deviation tracking
• Familiarity with enterprise scanning and compliance validation tools: Tenable.SC, Nessus, SCAP
• Strong technical writing skills for business justifications, risk assessments, SOPs, workflows, and executive briefings
• Experience leading collaboration forums and working groups across technical and operational teams
• Proven ability to guide stakeholders in secure configuration and DLP implementation for enterprise-wide consistency
• Strong problem-solving and analytical skills to assess risks, identify gaps, and recommend mitigation strategies
• Excellent verbal and written communication skills to convey complex security concepts to both technical and executive audiences

Benefits:

• Medical, Dental, & Vision Insurance Plans
• Employee-Owned Profit Sharing (ESOP)
• 401K offered

The approximate pay range for this position is between $95.00 and $135.00. Please note that the pay range provided is a good faith estimate. Final compensation may vary based on factors including but not limited to background, knowledge, skills, and location. We comply with local wage minimums.