Lead Infrastructure Security Engineer – CASB and DSPM

Job Description

Company: IT Accel, Inc.

Location: Newark, US

We are seeking a highly skilled Lead Infrastructure Security Engineer with deep expertise in Cloud Access Security Broker (CASB), Data Security Posture Management (DSPM), and Microsoft 365 (O365) data security technologies. This role is responsible for designing, implementing, and maintaining data protection strategies across cloud and SaaS environments by leveraging Z Scaler. Ideal candidate should have a strong focus on safeguarding sensitive data, ensuring regulatory compliance, and mitigating insider and external threats.

Here is What You Can Expect on a Typical Day

• Architecture & Design
• Design and implement enterprise-wide data security solutions leveraging CASB, DSPM, and Microsoft 365 security capabilities preferably with Z Scaler
• Develop secure architectures for SaaS, IaaS, and PaaS environments with a focus on data visibility and protection.

• CASB Management
• Deploy, configure, and optimize CASB solutions to enforce security policies across cloud applications (introspection, shadow IT discovery)
• Monitor user activity, detect anomalies, and prevent data exfiltration.
• Integrate CASB with identity providers (e.g., Entra / Azure AD) and SIEM/SOAR (e.g., Splunk) platforms.

• DSPM Implementation
• Lead the implementation and operationalization of DSPM tools to Client, classify, and monitor sensitive data across environments.
• Establish data classification frameworks and automate data risk assessments.
• Provide continuous visibility into data exposure, access risks, and compliance gaps.
• Integrate Microsoft CoPilot and Z Scaler or similar CASB / DSPM products

• Microsoft 365 Security
• Administer and enhance Microsoft 365 security controls, including:
• Sensitivity labels and information protection
• Insider Risk Management
• Microsoft Defender for Cloud Apps
• Secure Exchange Online, SharePoint Online, OneDrive, and Teams environments.

• Threat Detection & Incident Response
• Investigate security alerts related to data access, sharing, and exfiltration.
• Collaborate with SOC and Incident Response teams to remediate threats.
• Develop detection rules and automated response workflows.

• Compliance & Governance
• Ensure alignment with regulatory frameworks (e.g., GDPR, HIPAA, CCPA).
• Support audits and compliance reporting related to data security controls.
• Define and enforce data governance policies and standards.

The Skills & Expertise You Bring

Required Qualifications

• Bachelor’s degree in: Computer Science, Information Security, or a related field (or equivalent experience).
• 7+ years of experience in cybersecurity, with a strong focus on data security.
• Hands-on experience with CASB solutions (e.g., Z Scaler, Microsoft Defender for Cloud Apps, etc….).
• Proven experience implementing and managing DSPM tools and frameworks.
• Deep expertise in Microsoft 365 security and compliance features.
• Strong understanding of cloud platforms (Azure/ AWS preferred).
• Experience with DLP, data classification, encryption, and access controls.
• Familiarity with SIEM/SOAR tools (e.g., Sentinel, Splunk).
• Knowledge of identity and access management (IAM), including Zero Trust principles.

Preferred Qualifications

• Experience with Z Scaler for CASB, DSPM and DLP functions
• Experience with Azure / AWS to design the appropriate security controls
• Experience with Splunk and Entra ID
• Relevant certifications (e.g., CISSP, CCSP, Microsoft Security certifications).
• Experience with automation and scripting (PowerShell, Python).
• Knowledge of API integrations and security orchestration.
• Experience in highly regulated industries (finance, healthcare, etc.).

Source: LinkedIn