Lead, Infrastructure Security Engineer - CASB and DSPM

We are seeking a highly skilled Lead Infrastructure Security Engineer with deep expertise in Cloud Access Security Broker (CASB), Data Security Posture Management (DSPM), and Microsoft 365 (O365) data security technologies. This role is responsible for designing, implementing, and maintaining data protection strategies across cloud and SaaS environments by leveraging Z Scaler. Ideal candidate should have a strong focus on safeguarding sensitive data, ensuring regulatory compliance, and mitigating insider and external threats.

Here is What You Can Expect on a Typical Day * Architecture & Design

• Design and implement enterprise-wide data security solutions leveraging CASB, DSPM, and Microsoft 365 security capabilities preferably with Z Scaler
• Develop secure architectures for SaaS, IaaS, and PaaS environments with a focus on data visibility and protection.

CASB Management

• Deploy, configure, and optimize CASB solutions to enforce security policies across cloud applications (introspection, shadow IT discovery)
• Monitor user activity, detect anomalies, and prevent data exfiltration.
• Integrate CASB with identity providers (e.g., Entra / Azure AD) and SIEM/SOAR (e.g., Splunk) platforms.

DSPM Implementation

• Lead the implementation and operationalization of DSPM tools to discover, classify, and monitor sensitive data across environments.
• Establish data classification frameworks and automate data risk assessments.
• Provide continuous visibility into data exposure, access risks, and compliance gaps.
• Integrate Microsoft CoPilot and Z Scaler or similar CASB / DSPM products

Microsoft 365 Security

• Administer and enhance Microsoft 365 security controls, including: o Sensitivity labels and information protection o Insider Risk Management o Microsoft Defender for Cloud Apps

• Secure Exchange Online, SharePoint Online, OneDrive, and Teams environments.

Threat Detection & Incident Response

• Investigate security alerts related to data access, sharing, and exfiltration.
• Collaborate with SOC and Incident Response teams to remediate threats.
• Develop detection rules and automated response workflows.

Compliance & Governance

• Ensure alignment with regulatory frameworks (e.g., GDPR, HIPAA, CCPA).
• Support audits and compliance reporting related to data security controls.
• Define and enforce data governance policies and standards.

• Bachelor's degree in: Computer Science, Information Security, or a related field (or equivalent experience).
• 7+ years of experience in cybersecurity, with a strong focus on data security.
• Hands-on experience with CASB solutions (e.g., Z Scaler, Microsoft Defender for Cloud Apps, etc....).
• Proven experience implementing and managing DSPM tools and frameworks.
• Deep expertise in Microsoft 365 security and compliance features.
• Strong understanding of cloud platforms (Azure/ AWS preferred).
• Experience with DLP, data classification, encryption, and access controls.
• Familiarity with SIEM/SOAR tools (e.g., Sentinel, Splunk).
• Knowledge of identity and access management (IAM), including Zero Trust principles.

Preferred Qualifications

• Experience with Z Scaler for CASB, DSPM and DLP functions
• Experience with Azure / AWS to design the appropriate security controls
• Experience with Splunk and Entra ID
• Relevant certifications (e.g., CISSP, CCSP, Microsoft Security certifications).
• Experience with automation and scripting (PowerShell, Python).
• Knowledge of API integrations and security orchestration.
• Experience in highly regulated industries (finance, healthcare, etc.).

Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $133,600.00 to $220,400.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills.

• Market competitive base salaries, with a yearly bonus potential at every level .
• Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave .
• 401(k) plan with company match (up to 4%).
• Company-funded pension plan.

Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs. * Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development. * Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs. * Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.

Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. To find out more about our Total Rewards package, visit Work Life Balance | Prudential Careers. Some of the above benefits may not apply to part-time employees scheduled to work less than 20 hours per week.

Prudential Financial, Inc. of the United States is not affiliated with Prudential plc. which is headquartered in the United Kingdom.

Are you interested in building capabilities that enable the organization with innovation, speed, agility, scalability, and efficiency? The Global Technology team takes great pride in our culture where digital transformation is built into our DNA! When you join our organization at Prudential, you'll unlock an exciting and impactful career - all while growing your skills and advancing your profession at one of the world's leading financial services institutions.