Government Careers
  • Red Team Analyst Data Loss Prevention

  • Eteam
  • Charlotte, North Carolina 28202 United States View Map

Red Team Analyst Data Loss Prevention

The Red Team Analyst Data Loss Prevention will serve as an offensive security specialist within the Enterprise Information Protection (EIP) program, responsible for testing, validating, and stress-testing DLP controls against real-world insider threat and data exfiltration scenarios. This role focuses on thinking like a malicious insideremployee, contractor, or compromised identityto simulate and execute data loss techniques across endpoints, email, cloud collaboration platforms, and unstructured data repositories. Findings will directly inform control improvements, detection tuning, policy enforcement, and insider risk modeling across EIP and Insider Risk programs.

Responsibilities:

  • Design and execute red teamstyle data exfiltration scenarios aligned to insider threat, negligent user, and compromised account risk.
  • Simulate data loss techniques across endpoint, email, cloud storage, collaboration tools, web upload, printing, and removable media.
  • Test DLP controls for bypass techniques, misconfigurations, policy gaps, and detection blind spots.
  • Emulate high?risk behaviors tied to role?based access, privileged users, leavers, and third?party identities.
  • Validate effectiveness of DLP policies, sensitivity labels, endpoint controls, and alerting logic.
  • Partner with EIP engineering teams to tune detection rules, thresholds, and policy guardrails.
  • Execute testing tied to new DLP capabilities, roadmap initiatives, and tool deployments (e.g., endpoint DLP, unstructured data controls).
  • Produce clear, defensible reports outlining attack paths, control weaknesses, risk severity, and remediation guidance.
  • Present findings to EIP leadership, Insider Risk governance forums, and control owners.
  • Track remediation activities and validate improvements through re?testing.

Skills:

  • 5 years of experience in red team, offensive security, purple team, or adversary simulation roles.
  • Proven experience testing or bypassing Data Loss Prevention (DLP) or data protection controls.
  • Strong understanding of insider threat behaviors, data exfiltration techniques, and endpoint attack vectors.
  • Hands?on experience with endpoint, email, cloud, and collaboration security controls.
  • Ability to translate technical findings into business and risk?relevant insights.
  • Direct experience working with Varonis, Microsoft Purview (DLP, Information Protection, Insider Risk), and Proofpoint environments (TRAP, TAP, CASB).
  • Experience testing unstructured data environments and user?driven data movement.
  • Knowledge of threat modeling frameworks applied to human?centric and insider risk.
  • Background in regulated industries (financial services, healthcare, or technology).

Red Team Analyst Data Loss Prevention

The Red Team Analyst Data Loss Prevention will serve as an offensive security specialist within the Enterprise Information Protection (EIP) program, responsible for testing, validating, and stress-testing DLP controls against real-world insider threat and data exfiltration scenarios. This role focuses on thinking like a malicious insideremployee, contractor, or compromised identityto simulate and execute data loss techniques across endpoints, email, cloud collaboration platforms, and unstructured data repositories. Findings will directly inform control improvements, detection tuning, policy enforcement, and insider risk modeling across EIP and Insider Risk programs.

Responsibilities:

  • Design and execute red teamstyle data exfiltration scenarios aligned to insider threat, negligent user, and compromised account risk.
  • Simulate data loss techniques across endpoint, email, cloud storage, collaboration tools, web upload, printing, and removable media.
  • Test DLP controls for bypass techniques, misconfigurations, policy gaps, and detection blind spots.
  • Emulate high?risk behaviors tied to role?based access, privileged users, leavers, and third?party identities.
  • Validate effectiveness of DLP policies, sensitivity labels, endpoint controls, and alerting logic.
  • Partner with EIP engineering teams to tune detection rules, thresholds, and policy guardrails.
  • Execute testing tied to new DLP capabilities, roadmap initiatives, and tool deployments (e.g., endpoint DLP, unstructured data controls).
  • Produce clear, defensible reports outlining attack paths, control weaknesses, risk severity, and remediation guidance.
  • Present findings to EIP leadership, Insider Risk governance forums, and control owners.
  • Track remediation activities and validate improvements through re?testing.

Skills:

  • 5 years of experience in red team, offensive security, purple team, or adversary simulation roles.
  • Proven experience testing or bypassing Data Loss Prevention (DLP) or data protection controls.
  • Strong understanding of insider threat behaviors, data exfiltration techniques, and endpoint attack vectors.
  • Hands?on experience with endpoint, email, cloud, and collaboration security controls.
  • Ability to translate technical findings into business and risk?relevant insights.
  • Direct experience working with Varonis, Microsoft Purview (DLP, Information Protection, Insider Risk), and Proofpoint environments (TRAP, TAP, CASB).
  • Experience testing unstructured data environments and user?driven data movement.
  • Knowledge of threat modeling frameworks applied to human?centric and insider risk.
  • Background in regulated industries (financial services, healthcare, or technology).
Government Careers

Government Careers

Government jobs offer stability, competitive benefits, and the chance to make a meaningful impact on your community and country.

Whether you’re starting your career or seeking new opportunities, these roles provide pathways for growth, security, and service.

Explore positions across a wide range of fields and take the first step toward a rewarding future in public service.

Show more

MORE JOBS