Senior Data Security Engineer

Who we are!  
Platinum Technologies is a Northern Virginia based integrated solutions firm that specializes in Cybersecurity, Cloud and Digital Services to the Public Sector. Our team solves hard problems and helps our Mission Partners achieve their goals. If you are self-motivated, possess demonstrated learning agility, and are passionate about delivering high-quality work products – we want to hear from you.
We lead with technical expertise, but that is just the tip of the iceberg – the ‘Why’ matters. At Platinum, we don’t hire people to do a job. We provide professional and leadership development to complement our self-motivated domain experts. Our teammates are dot-connecting leaders that operate in a mutually accountable environment to deliver thought leadership, expert technical analysis, and quality execution for our clients. 

You.
Platinum Technologies is seeking a Senior Data Security Engineer (DRM Specialist) to join our company. The Senior DRM Specialist is responsible for the configuration and enforcement of advanced encryption policies using Microsoft Purview Information Protection across NIPR, SIPR, and Top Secret environments. You will move the Command beyond simple file encryption to a granular, identity-aware protection model. You will design the policy rules that act as the Policy Decision Point (PDP), ensuring that a user's ability to decrypt a file is brokered in real time based on Trust Attributes including clearance, role, and risk level. You will also manage the key management lifecycles required to maintain a seamless user experience in a high-security, hybrid environment.

This role requires an active Top Secret/SCI. The position will be in Tampa, Florida.

What you get to do.
•    Architect and configure Microsoft Purview Information Protection to serve as the central Policy Decision Point (PDP) for file access across multiple enclaves.
•    Translate NIST 8112 metadata attributes into concrete DRM policies (e.g., Allow View ONLY if User.Clearance >= TopSecret AND Device.State = Compliant).
•    Manage the lifecycle of encryption keys (Bring Your Own Key, Customer Managed Keys) to ensure FIPS 140-2/3 compliance and availability across hybrid and air-gapped environments.
•    Define and enforce Rights Management controls that prevent Copy/Paste, Screen Capture, and Printing for documents tagged with specific sensitivity labels (CUI, Secret/NoForn).
•    Integrate Purview sensitivity labels and policies with Microsoft 365, Entra ID conditional access, and supporting data discovery and classification workflows.

Requirements.
•    Active Top Secret/SCI Clearance.
•    Master of Science (MS) in Cybersecurity, Computer Science, Mathematics (Cryptography focus), or a related technical field.
•    Minimum ten (10+) years of technical experience.
•    CompTIA Security+ CE (or higher) to meet DoD 8570 IAT Level II requirements.
•    Minimum five (5+) years of hands-on experience designing and administering Enterprise Digital Rights Management (EDRM) or Information Rights Management (IRM) systems, with deep experience in Microsoft Purview Information Protection, Azure Information Protection (AIP/RMS), or Virtru.
•    Working knowledge of cryptographic protocols (AES-256, RSA), Public Key Infrastructure (PKI), and Key Management Service (KMS) operations.
•    Demonstrated ability to design Attribute-Based Access Control (ABAC) logic and conditional access policies.
•    Understanding of how encryption travels across Cross-Domain Solutions (CDS) and the challenges of key management in air-gapped networks.

 
The Company is an Equal Opportunity/Affirmative Action employer. All qualified candidates will receive consideration for employment without regard to disability, protected veteran status, race, color, religious creed, national origin, citizenship, marital status, sex, sexual orientation/gender identity, age, or genetic information.