Position Details

Salary $133K – $220K USD / year

Type Full-Time

Experience lead

Exp. Years 7+ years

Education Bachelor's degree in Computer Science or related field

Category Cybersecurity

About this role

Lead Infrastructure Security Engineer focuses on CASB, DSPM, and Microsoft 365 data security to protect cloud and SaaS environments. The role involves designing and operating data protection strategies across cloud platforms and ensuring regulatory compliance.

Key Responsibilities

Architecture & Design
CASB Management
DSPM Implementation
Microsoft 365 Security Administration
Incident Detection & Response

Technical Overview

Technical scope includes CASB/DSPM tooling, Microsoft 365 security controls, cloud security across Azure/AWS, data loss prevention, and SIEM/SOAR integrations with governance and incident response.

Ideal Candidate

The ideal candidate is a lead-level cloud security engineer with 7+ years of cybersecurity experience focused on CASB and DSPM, and strong Microsoft 365 security capabilities. They should be proficient with Z Scaler, Entra ID, SIEM/SOAR, and cloud security across Azure and AWS.

Must-Have Skills

7+ years of cybersecurity experience with a strong focus on data securityHands-on experience with CASB solutions (e.g.Z ScalerMicrosoft Defender for Cloud Apps)Proven experience implementing and managing DSPM toolsDeep expertise in Microsoft 365 security and compliance featuresStrong understanding of cloud platforms (Azure/ AWS)Experience with DLPdata classificationencryptionand access controlsFamiliarity with SIEM/SOAR tools (e.g.SentinelSplunk)

Nice-to-Have Skills

Experience with automation and scripting (PowerShellPython)Knowledge of API integrations and security orchestrationExperience in highly regulated industries (financehealthcareetc.)CISSPCCSPMicrosoft Security certifications

Tools & Platforms

Z ScalerMicrosoft Defender for Cloud AppsEntra IDAzureSplunkSentinelMicrosoft 365 Security

Required Skills

7+ years cybersecurityCASB (Z ScalerDefender for Cloud Apps)DSPMMicrosoft 365 securitycloud security (Azure/AWS)DLPdata classificationencryptionaccess controlsSIEM/SOAR

Hard Skills

CASBCloud Access Security BrokerDSPMMicrosoft 365 securityZ ScalerEntra IDMicrosoft Defender for Cloud AppsDLPData classificationEncryptionAccess controlsSIEMSOARCloud securityAzureAWSInsider Threat ManagementSharePoint OnlineOneDriveTeamsAuditsCompliance

Soft Skills

leadershipmentoringcommunicationcollaborationproblem solvingorganizational

Certifications

Preferred

CISSPCCSPMicrosoft Security Certifications

Industry & Role

Industry Insurance

Job Function Design and maintain data protection strategies across cloud and SaaS environments using CASB, DSPM, and Microsoft 365 security tools

Role Subtype Security Engineer

Tech Domains Amazon Web Services, Azure, Microsoft 365, SharePoint, Power BI, Tableau, ITSM / ServiceNow, Cloud Security

Keywords for Your Resume

Lead Infrastructure Security EngineerCASBDSPMMicrosoft 365 securityZ ScalerMicrosoft Defender for Cloud AppsAzureAWSSplunkSIEMSOARInsider Risk ManagementDLPSensitivity labelsInformation protectionSharePoint OnlineOneDriveTeamsEntra ID

Deal Breakers

Less than 7 years of cybersecurity experience, No CASB/DSPM experience, No cloud security experience (Azure/AWS)

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Lead, Infrastructure Security Engineer - CASB and DSPM

Get matched to jobs like this