Cyber Platforms Engineer - Information Protection

Data Governance & Management

• Design and manage Microsoft Purview Data Map, Data Catalogue, and governance frameworks
• Register, classify, and scan data sources across cloud, SaaS, and on-premises environments
• Maintain accurate metadata, taxonomy, and business glossary
• Establish data lineage to provide visibility of data flows
• Define ownership and accountability with data owners and stewards

Information Protection & Security

• Design and implement sensitivity labelling across M365 and Azure
• Deploy auto-labelling to identify and protect sensitive data (e.g. personal or financial)
• Implement and manage Data Loss Prevention (DLP) controls
• Embed information protection into business processes and user workflows

Risk, Compliance & Assurance

• Configure and manage Microsoft Purview compliance capabilities (e.g. Compliance Manager, Insider Risk)
• Support regulatory requirements such as GDPR
• Contribute to audits, risk assessments, and control reviews
• Monitor and report on data protection posture and control effectiveness

Automation & Continuous Improvement

• Develop automation using APIs, scripting, and tooling to improve efficiency
• Integrate Purview with wider security and data platforms
• Produce reporting and dashboards on data risk and control performance
• Identify opportunities to improve data governance maturity

Stakeholder Engagement

• Collaborate with Cyber, Data, Architecture, and business teams
• Provide guidance on data protection and best practice
• Drive awareness and adoption of information protection controls
• Support development of policies, standards, and procedures

We are seeking an experienced and motivated Cyber Platforms Engineer to join our Group Technology team in Milton Keynes. In this role, you will be responsible for the design, implementation and ongoing management of the Group's data governance, information protection and compliance capabilities. Operating at the intersection of data, security and compliance, the role ensures that organisational data is discoverable, appropriately classified, protected, and used in line with regulatory and business requirements across Microsoft 365, Azure and wider data platforms., Essential:

• Experience in data governance, information protection, or cloud security
• Hands-on experience with Microsoft Purview (or similar tooling)
• Experience delivering security or compliance controls in M365 and/or Azure

Desirable:

• Experience in regulated or large-scale environments
• Strong knowledge of data classification, lifecycle, and governance principles
• Understanding of identity and access control (e.g. Entra ID, RBAC)
• Experience across structured and unstructured data
• Scripting/automation skills (PowerShell, Python, KQL), * Relevant technical qualifications or equivalent experience.
• Microsoft certifications (e.g. SC-400, AZ-500, DP-203, AZ-305)
• Experience with Azure data services (e.g. Data Factory, Synapse, Databricks)
• Experience integrating data governance with broader security platforms