Data Protection Lead – Microsoft Security Solutions

At Avanade, cybersecurity consultants are innovators and challengers of the status quo. If you’re an experienced Cyber Defense consultant, who can help our clients solve complex Cyber Defense business challenges, this might be the perfect opportunity for you. Come join us in a client-facing consultancy role, where you will work on exciting projects that transform our client’s Cyber Defense strategy and operations through the design and implementation of predominantly Microsoft Threat Protection technologies.

As a member of our security practice, you will work for both Avanade and Accenture clients, ranging from medium to large global enterprise clients. Join a curious and diverse team that’s passionate about next‑gen tech and establish yourself as a leader in the Cyber Defense space. Together, let’s transform cybersecurity.

You will have the opportunity to contribute to the entire Avanade organization by being a collaborative and knowledge‑sharing individual, with the real opportunity to help shape the global Avanade security offerings as well as demonstrating your thought‑leadership by producing blogs and articles for your region and for Avanade.com. We actively encourage and provide opportunity to undertake innovation, training, and development to ensure you are always at the cutting‑edge Microsoft Security technology and our vendor solutions.

This is a fantastic opportunity to establish yourself as a leader in the Data Protection space. You will learn how to deliver and solution large and global Data Protection solutions, as well as gain the knowledge and experience of Microsoft’s broader Security, Compliance, and Identity (SCI) ecosystem, which is already recognised as a world‑leading integrated security platform.

You will:

• Work with Avanade customers to design and implement Zero Trust architectures using Microsoft security solutions, focusing on data protection.
• Lead the deployment and configuration of Microsoft Purview for data governance, compliance, information protection, Insider Risk, and Data Loss Prevention.
• Lead the deployment and configuration of Microsoft Defender for Endpoint, Identity, and Cloud Apps.
• Lead the deployment and configuration of Microsoft Defender for Cloud for cloud security posture management.
• Develop and maintain data classification, labeling, and retention policies.
• Develop and implement DSPM strategies for AI systems, ensuring secure data flows, model integrity, and privacy compliance.
• Conduct data protection risk assessments and recommend mitigation strategies.
• Support security workshops, discovery sessions, and technical governance activities.
• Provide guidance on compliance frameworks, data lifecycle management, and privacy controls.
• Provide technical guidance and training to internal teams on Microsoft security tools.
• Stay current with emerging threats, vulnerabilities, and Microsoft product updates.
• Work independently, with occasional validation of work efforts against strategic and operational objectives.

Characteristics that can spell success for this role:

• Experience in consulting and advisory discussions with clients and other consulting firms.
• Experience in owning the design and implementation of technology solutions.
• Subject matter expert with experience working on the Microsoft platform.
• Experience managing deliverables and being responsible for delivering against critical milestones.
• Ability to collaborate within a large global organization.
• Implementing work plans for assigned projects, programs and clients against established operational objectives.
• Act as a role model and leader.
• Possess one or more certifications.

Key responsibilities:

• Proven experience with Microsoft Security technologies including Microsoft Purview, Defender, Sentinel, and Entra ID.
• Hands‑on experience with DLP policy design, migration and refinement.
• Strong understanding of data protection regulations (e.g., GDPR, DPA 2018, ISO 27001, NIST, EU AI Act).
• Familiarity with AI security concepts, including DSPM, model governance, and data lineage.
• Understanding of Zero‑Trust architecture and cloud‑native security controls.
• Excellent communication and stakeholder engagement skills.
• Relevant certifications (e.g., SC‑400, SC‑200, AZ‑500, CISSP, CIPP/E, AI‑specific certs) are highly desirable.

Ideally:

• Proven experience with Microsoft Information Protection and with data classification infrastructures and techniques to classify unstructured and structured data both on‑premises and in the cloud.
• Proven experience with Data Loss Prevention technologies across endpoints, email and the internet, including Microsoft Purview.
• Proven experience securing Office 365, leveraging Microsoft Secure Score with a deep understanding of the security capabilities of Office 365.
• Proven experience in techniques and approaches towards the protection of data stored in databases and applications.
• Deep expertise in data confidentiality and data integrity principles.
• Deep expertise of business, privacy, security, and compliance challenges surrounding Data Protection, including research and understanding of data privacy requirements.
• Strong interest in Cyber Security, maintaining a good understanding of capabilities across the industry, and in developing their own Cyber experience to continue progression.
• Aware of emerging technologies in the Data Protection space.