Our client has approved a project to design, configure, deploy, and stabilize the Microsoft 365 Azure Information Protection/Data Loss Prevention (AIP-DLP) elements. They are looking for a Technical SME to advise and technically lead the phases of Discovery, defining Technical Governance and Standards, Classification and Labeling, and configuring both AIP and DLP to protect and monitor company documents. Are you the experienced consultant for the job? If your answer is yes, then please apply. We value and encourage diversity in the workplace and women, minorities, and veterans are highly encouraged to apply. Thank you!

Type: Temp

Location: Hybrid (remote and Portland, OR) 

Technical SME (Office365 Azure Information Protection/Data Loss Prevention)

  • Architecture experience with Designing & Implementing Data Governance Frameworks across AIP/MIP/DLP
  • Experience working within Project/Delivery Management Methodologies (SDLC, Hybrid Waterfall)
  • Experience working in a cross functional team, with the ability to lead/drive the scope of work in ambiguous client facing situations and requests
  • Experience in a wide range of security tools & technologies, Cloud Security, Security Architecture modelling, Cloud security framework development etc.
  • Experience in conducting cloud security assessments against best practices/standards
  • Experience in creating as built artifacts and standards.
  • Creation of daily, weekly and incident reports
  • Work in collaboration with technical SMEs and Administrators, Project management and Change Management team members during working hours 7am-4pm PDT Monday-Friday.
  • Attend daily 8:30am PST Stand Up
  • Attend daily site validation and working sessions.
  • Provide & respond to frequent daily communications and status requests from site owners, PMs, Change Managers.
  • Attend and actively participate in end-user site validation sessions along with business site owners, Technical SMEs, PMs, Change Management team members.


  • Assessment of current state of information protection policies, standards, and implementation.
  • Lead gap analysis of current state to target state.
  • Contribute to the documentation into form of standards and designs to meet business requirements.

Leveraging AIP and Microsoft 365 DLP design, configuration and deployment technical expertise, work with the supporting technical team to complete the following:

-Discovery Phase

  • Connect Cloud apps to Defender
  • Scan files via App connector
  • Investigate/analyze files
  • Evaluate accessibility /status
  • Validate site permissions have been migrated over correctly
  • Sign off on pre-validation session quality

-Technical Governance and Standards development- advise the following:

  • Develop initial data governance and standards
  • Socialize w. stakeholders and business groups
  • Integrate into classify and label next steps

-Classify & Label

  • Integrate sensitive information definitions.
  • Enable MS Purview Info protection integration
  • Create policies to identify sensitive info
  • Label sensitive info


  • Enable file policy governance actions
  • Enable alerts and notifications
  • Enable monitoring
  • Enable automatic sensitivity labels


  • Creation of daily ,weekly and incident reports
  • Enable the daily check of dashboards
  • Enable the Investigation of file incidents
  • Enable the ability to fine tune policies and alerts
  • Advise best practices for overall AIP-DLP continuous improvement

Key Skills and Qualifications

  • 6+ years’ Architecture experience with Designing, Implementing, Remediating Microsoft 365 Data Protection technologies in Highly Regulated Industries (Public Utilities, Financial Services, Healthcare, Government, etc.).
  • Excellent interpersonal skills, including collaboration, facilitation, and negotiation.
  • Ability to lead work effort with little day to day supervision. Ability to work through ambiguity and escalate issues to maintain project momentum.
  • Experience in below technologies:

o Data Loss Prevention

o Document Fingerprints

o Sensitive Information Types

o Microsoft Information Protection/Azure Information Protection

o Classification & Labelling

o Data Retention & Deletion

o Azure Rights Mgmt. Services & Information Rights Management

o AIP Client Viewer

o Legal/Litigation Holds

o Office 365 Message Encryption

o SharePoint/OneDrive Online Preservation Policies and Disposition Reviews