Job Description
โ
โ
Imagine Your Future with Us! Since 1971, Paychex has been at the forefront of simplifying HR, payroll, and benefits for American businesses. Our digital HR technology and advisory solutions cater to the changing needs of employers and their employees. With our award-winning training and endless opportunities for growth and development, you can build a lifelong career with us. We pride ourselves on fostering an inclusive and innovative culture. Our leaders are here to support your career journey; they and our dedicated employees embody the values that drive us to support each other, our clients, and our communities. Join us to pursue your passion and unleash your potential.
โ
โ
โOverview
โโ
As a Data Security Posture Management Engineer, you will provide hands-on technical support for securing modern technologies and platforms, with a primary focus on data security posture across cloud, on-premise, and SaaS environments. You will help the organization understand where sensitive data resides, how it is accessed, and how to protect it, while developing security requirements and best-practice guidance to ensure the business maintains a competitive security posture.
A Data Security Posture Management Engineer is also responsible for collaborating with our IT and Data partners on business initiatives and recommending secure design solutions to protect against known security threats, data exposure, and misconfigurations. The ideal candidate will have experience with data discovery, classification, and access governance across environments such as public cloud platforms, Office 365, and data platforms like Snowflake, as well as strong foundational security and IT skills.
An ideal candidate will have a bachelor's degree in Information Security or a related field. In addition, you must have excellent written and oral communication skills, be successful working on a team collaboratively, and understand foundational IT concepts. Entry-level cybersecurity certifications are preferred.
โ
โ
โ
โResponsibilities
โโ
- Manage identification, prioritization, and remediation guidance of data security vulnerabilities, threats, and misconfigurations across cloud, on-premise, and SaaS environments.
- Implement, configure, and tune Data Security Posture Management (DSPM) and data discovery capabilities to continuously identify and classify sensitive data (e.g., PII, PCI, PHI, secrets, intellectual property) across structured and unstructured data stores.
- Continuously assess data security posture across major cloud providers, on-prem databases, Office 365 (SharePoint, OneDrive, Exchange, Teams), and data platforms such as Snowflake, helping drive remediation with internal and external partners.
- Support the definition and implementation of least-privilege access, RBAC/ABAC models, and data handling standards for critical data repositories.
- Integrate DSPM and data security findings into SIEM/SOAR and ticketing systems to support monitoring, alerting, workflow, and incident response related to data security events.
- Track security events and incidents from initial detection through final resolution, including those involving potential data exposure or data loss.
- Develop and maintain automation and tooling (scripts, integrations, dashboards) to reduce manual tasks and report on key data security posture metrics for technical and business stakeholders.
- Demonstrate understanding of information security risks, threats, and controls, particularly as they relate to data storage, access, sharing, and retention.
- Demonstrate understanding of cloud platforms and how to properly implement cloud-native data security best practices, including encryption, key management, and data access controls.
- Maintain awareness of technological trends and developments in security, cloud, data platforms, and related technologies, with an emphasis on evolving data security and privacy requirements.
- Apply knowledge of core IT concepts and functions when working with infrastructure, application, and data engineering teams.
- Collaborate on cross-functional projects inside and outside of Enterprise Security to ensure that security and data protection concerns are addressed throughout the project life cycle. Ensure security projects and deliverables are completed on time and on budget.
- Manage approval, tracking, and reporting of any security exceptions as the need arises, including those involving data access or data handling exceptions.
โ
โ
โ
โQualificationsโ
- Bachelorโs Degree in Information Security, Computer Science, Software Development, or another related technical discipline โ Preferred.
- 3+ years of experience in Information Security / Cyber Security, with at least 1โ2 years focused on data security, cloud security, or data security posture management concepts.
- Experience with data discovery, classification, and/or DSPM capabilities in hybrid environments (cloud, on-prem, SaaS) is strongly preferred.
- Understanding of cloud platforms (e.g., AWS, Azure, GCP) and how to properly implement security and data protection best practices in those environments.
- Familiarity with SaaS and data platforms such as Office 365 and data warehouses/analytics platforms (e.g., Snowflake or similar).
- Practical experience with scripting or automation (e.g., Python, PowerShell, or similar) for integrating security tools, building reports, or remediating issues at scale.
- Understanding of core data security concepts (data lifecycle, classification, encryption, access control, DLP, data minimization) and their application in enterprise environments.
- Understanding of information security risks, threats, and controls, and familiarity with common security or privacy frameworks (e.g., NIST CSF, ISO 27001, SOC 2, GDPR/CCPA concepts).
- Entry level cybersecurity certifications (Security+, (ISC)ยฒ Associate, GSEC, CEH, etc.) โ Preferred.
- Ability to work hybrid 3 days a week out of the locations listed on the job posting
โ
