Primary Responsibilities
· Architect and deploy a scalable Microsoft Purview Information Protection solution for sensitivity labelling in a multi-tenant environment with a high volume of external users (Members and Guests).
· Develop and implement data governance frameworks and strategies to ensure data integrity, availability, and compliance across the organisation, aligning with industry best practices and regulatory requirements.
· Design and enforce labelling policies, auto-labelling rules, and data classification strategies aligned with business and regulatory requirements.
· Integrate Microsoft Entra ID for identity governance, access control, and conditional access policies tied to sensitivity labels.
· Manage and secure Microsoft Entra ID tenants, ensuring robust configuration, role-based access control, and alignment with organisational security policies.
· Implement security solutions based on Zero Trust principles, protecting identities, devices, and data across the enterprise.
· Collaborate with stakeholders across security, compliance, and IT to define label taxonomy, hierarchy, and labelling workflows.
· Ensure seamless integration of sensitivity labelling with Microsoft 365 services including Exchange Online, SharePoint Online, OneDrive, and Teams.
· Develop and maintain documentation, runbooks, and training materials to support label deployment and lifecycle management.
· Provide technical leadership and best practice guidance on multi-tenant security architecture, Zero Trust, and data protection.
· Conduct security assessments, gap analyses, and risk mitigation strategies related to sensitivity labelling.
· Monitor and optimise label usage, policy effectiveness, and compliance posture using Microsoft Purview and Microsoft Defender tools.
Essential skills/knowledge/experience:
· Proven experience with Microsoft Purview Information Protection and Microsoft Entra ID.
· Strong understanding of Microsoft 365 security architecture and Zero Trust frameworks.
· Experience designing and implementing labelling and classification strategies in complex
environments.
· Familiarity with regulatory compliance standards (e.g., GDPR, ISO 27001).
· Excellent stakeholder engagement and cross-functional collaboration skills.
· Strong documentation and training development capabilities.
Desirable Knowledge and Experience
· Microsoft Certified: Information Protection Administrator Associate
· Microsoft Certified: Identity and Access Administrator Associate
· Experience in multi-tenant or hybrid cloud environments