Senior Data Security Engineer

Who We Are

Join a team that puts its People First! Since 1889, First American (NYSE: FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For® list for eleven consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit www.careers.firstam.com.

What We Do

As a Senior Data Security Engineer, you will support and enhance First American’s existing data security processes, standards, and tools across the enterprise. You will work with the Data Security team to reduce risk for the organization by securing data, classifying and labeling sensitive data, and applying encryption or other security controls to protect and ensure appropriate access and use of sensitive data. Additionally, you will work with internal information security and business groups to identify opportunities for continuous improvement and maturity of the Data Security function. You will be joining a team that is looking to mature the tools and technology that we use, as well as the end-to-end data remediation process. 
 *We are open to remote candidates for this role

What You’ll Do:

• Drive initiatives like expanding the use of Microsoft 365 Information Protection (MIP) and Purview Data Loss Prevention (DLP) for cloud-based collaboration services.
• Own and mature the data classification, sensitivity labeling, and data loss prevention (DLP) strategy to protect confidential, proprietary, regulated, and customer data.
• Support regulatory, audit, and risk management requirements by providing evidence, metrics, and documentation related to data protection controls and policy enforcement.
• Drive continuous improvement of data security controls by tuning policies, reducing false positives, and aligning enforcement to evolving business and regulatory needs.
• Monitor, triage, and investigate alerts and cases; collaborate with HR, Legal, and Security Operations on escalations and remediation actions.
• Solve problems, research alternatives, prepare presentations, drive solutions pertaining to data security across the organization.
• Analyze data and report trends & metrics to business partners (ex: user adoption/labeling activity, high risk users/business units, or risk exposure/risk remediation).
• Assist with the creation, maintenance, and updates of data security process documents, including data remediation, sensitivity labeling, and process/workflows with ServiceNow integration.
• Partner with business units and data stewards to support data security initiatives across the enterprise.
• Be a subject matter expert for questions from end users and business stakeholders on topics such as data security policies, standards, and business processes.
• Participate in evaluation and selection of new technology.

What You’ll Bring:

• Minimum 3 years of relevant work experience in Information Security, IT Risk Management
• M365 EMS E5 stack of online services, including but not limited to, Purview DLP, Microsoft Information Protection (MIP), and how these interact with Exchange, SharePoint, OneDrive, and Microsoft Defender (Cloud Apps & Endpoint)
• Extensive experience working with Microsoft technologies and infrastructure, with an emphasis on Active Directory/AAD
• Working knowledge of IT and Information Security control standards and frameworks (CIS, NIST, ISO27001, etc.) as well as financial services regulatory requirements (CCPA, PCI-DSS, etc.)
• Familiarity with RegEx formulas, Sensitive Information Types (SITs), NPI/PI
• Team player with positive energy and good customer service skills
• Ability to work independently, demonstrates initiative, and is a self-starter
• Understanding of modern cyber security methodologies and protocols
• Excellent verbal and written communication skills
• Experience in documenting processes, technical writing, and flow charts
• Manage multiple initiatives simultaneously, with strong ability to prioritize
• Customer focused in the context of balancing risk reduction with business needs
• High attention to detail to manage, analyze and finalize artifacts and documents
• Highly flexible, adapting to changes in priorities and requirements
• Ability to quickly learn, communicate and apply technical concepts
• Demonstrated judgement in effectively dealing with highly sensitive information
• Bachelor’s Degree or equivalent experience

What We Offer

By choice, we don’t simply accept individuality – we embrace it, we support it, and we thrive on it! Our People First Culture celebrates diversity, equity and inclusion not simply because it’s the right thing to do, but also because it’s the key to our success. We are proud to foster an authentic and inclusive workplace For All. You are free and encouraged to bring your entire, unique self to work. First American is an equal opportunity employer in every sense of the term.

Based on eligibility, First American offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.

Pay Range: $129,300.00 - $172,300.00 Annually

This hiring range is a reasonable estimate of the base pay range for this position at the time of posting. Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements and geographic location.