Infosys is a global leader in next-generation digital services and consulting. We enable clients in more than 56 countries to navigate their digital transformation.
We are seeking a DLP Specialist-Data Privacy to design, implement, and optimize Data Loss Prevention (DLP) controls—primarily on Microsoft Purview—and champion privacy-by-design practices across the enterprise.
Short Description: This role operates within a fast-paced agile workplace in Data Strategy & Transformation Tribe, working at the frontier of data innovation.
- Creating, owning, and implementing a cohesive data transformation strategy across governance and execution streams.
- Designing and deploying enterprise-wide data governance and data management solutions.
- Delivering data products that meet business needs while actively reducing enterprise data risk.
Roles And Responsibilities
DLP Implementation & Tuning
- Implement and enhance DLP controls (Email, Web uploads, SharePoint, OneDrive, Teams, Endpoint) including monitoring and blocking rulesets.
- Roll out initial document classification/labelling and email classification/labelling practices, with corresponding policy-based controls.
- Translate insights from DLP alerts (e.g., false positives, policy collisions, user overrides) to continuously refine posture, thresholds, and user experience (policy tips, justifications).
Operations, Monitoring & Reporting
- Own the operational review of DLP alerts and incidents, ensuring timely triage, escalation, and stakeholder communication.
- Produce metrics and dashboards on policy efficacy, alert volumes, and control coverage; recommend remediation to reduce risk and noise.
Data Privacy & Governance
- Embed privacy-by-design in DLP and information protection workflows; support PIAs/DPIAs, data classification schemas, retention schedules, and lawful-basis mappings.
- Partner with Legal, Risk, Security, and the Data Office to align controls to the Australian Privacy Act (APPs) and relevant global standards (e.g., GDPR principles where applicable).
Stakeholder Engagement & Enablement
- Collaborate with Enterprise IT, Security, Data Office, product owners, and business units to prioritize use cases, manage change, and drive adoption.
Conduct enablement sessions and create artefacts (runbooks, SOPs, user guides) to improve compliance and usability.
Technical Leadership
- Serve as a hands-on Tech Lead: set patterns and guardrails, mentor engineers/analysts, review designs, and ensure quality, resilience, and scalability of controls.
- Contribute to Agile ceremonies; ensure transparent delivery against milestones and risk management commitments.
Skill / Competencies / Experience:
Qualifications:
- Experience in workplace technology management, ideally within an agile enterprise setting.
- Background in Data Loss Prevention and implementation of DLP controls (highly desirable).
- Hands-on experience with Microsoft Purview or similar DLP platforms (desirable).
- Self-starter with a track record of delivering technology controls and services.
- Operational experience with privacy-by-design, data minimisation, purpose limitation, consent, and transparency.
- Familiarity with the Australian Privacy Act (1988) and APPs, OAIC guidance, and the Notifiable Data Breaches (NDB) scheme; awareness of GDPR principles beneficial.
- Experience supporting PIAs/DPIAs, handling DSARs, designing retention & disposal policies, and applying de-identification/pseudonymisation techniques.
- Hands-on delivery of DLP controls in enterprise environments—preferably with Microsoft Purview (Information Protection & Governance).
- Proficiency with sensitivity labels, auto-labelling, sensitive info types, EDM/classifiers, policy tips, user overrides, and incident workflows.
- Experience implementing controls across M365 workloads (Exchange Online, SharePoint, OneDrive, Teams) and Endpoint DLP.
- Understanding of related capabilities (eDiscovery, Insider Risk, Conditional Access) and integration patterns.
Preferred
- Microsoft: SC-400 (Information Protection Administrator), SC-200, SC-100
- Privacy: CIPP/E or CIPP/A, CIPM, CIPT (IAPP)
Additional
- Data Privacy
- M365 workloads (Exchange Online, SharePoint, OneDrive, Teams), Endpoint DLP
- Incident/case management tools, SIEM dashboards, Jira/Confluence, Power BI for reporting
At Infosys, we recognize that everyone has individual requirements. If you are a person with disability, illness, or injury and require adjustments to the recruitment and selection process, please contact our Recruitment team.
Infosys is an equal opportunity employer and is committed to embracing diversity and creating an inclusive environment for all employees.
#J-18808-Ljbffr
📌 DLP Specialist-Data Privacy
🏢 Infosys
📍 Sydney