Lead Security Administrator

Texas GovLink, Inc. is an Austin-based firm which has been a leading provider of technical and business professionals to clients in Texas. We are currently seeking an experienced Lead Security Administrator to be a key resource on a technical services team.

Texas GovLink offers its family of consultants excellent rates, a local support staff, and an attractive benefits package which includes medical insurance (TGL shares a percentage of the cost), life insurance, a matching 401(k) plan and a cafeteria plan.

Candidates selected for interview will be required to undergo criminal background checks and may be required to complete a drug screen in accordance with Federal and State Law.  Offers of Employment are contingent on a successful background check

Texas GovLink is an equal opportunities employer.

Responsibilities:

Coordinate with a multi-divisional program team to ensure the comprehensive rollout of Data Loss Prevention (DLP) policies in Microsoft Purview and operate the Varonis toolset to reduce data exposure risk across M365 collaboration and unstructured data stores. This role blends strategic governance and risk leadership with hands-on engineering, ensuring sensitive data is classified, protected, and compliant across the data lifecycle.

Lead the Microsoft Purview DLP program for unstructured data

1. In coordination with IT staff and the program team, own and manage the end-to-end design, implementation, and tuning of Purview DLP (Exchange, SharePoint, OneDrive, Teams, Endpoint DLP) and sensitivity labels (creation, publishing, auto-labeling).
2. Establish and mature classification, labeling, and lifecycle policies; drive data lineage and catalog coverage.
3. Define monitoring, metrics, and reporting for DLP efficacy, coverage, and policy adherence; optimize Purview health and performance.

Run the Varonis toolset (operations & remediation)

1. Operate and tune Varonis to identify sensitive data, expose risky permissions, and drive least-privilege access remediation with data owners.
2. Develop operational playbooks for alert triage, incident routing, and remediation workflows; integrate signals with incident and risk processes.

Enterprise data governance & risk

1. Co-author and enforce data governance best practices with Legal & Compliance, Records Information Management, Information Technology, and Information Security.
2. Facilitate workshops with data owners/stewards; raise data literacy and promote consistent classification behaviors across divisions.
3. Conduct risk and privacy impact assessments; align controls with NIST and ISO 27001 frameworks and applicable regulations (GDPR, HIPAA, CCPA).

Incident response & compliance operations

1. Partner with Information Security staff to monitor and respond to data-related security incidents, insider risk, and compliance alerts; deliver post-incident improvements.
2. Leverage Purview Compliance Manager, Insider Risk Management, Records Management, Audit, and eDiscovery to streamline investigations and evidentiary requirements.

Minimum (Required):

Preferred (Optional):