IT Security Engineer - DLP and CASB Engineering - Remote

<p>External candidates: In order for your application to be correctly processed please sign-in before you apply</p><p></p><p>Internal candidates: Please go to Workday and click "Find Jobs" link under Career</p><p></p><p>Thank you for considering opportunities with us!</p><p style="text-align:left"><u><b><span style="font-size:14px">Job Title</span></b></u></p>IT Security Engineer - DLP and CASB Engineering - Remote<p style="text-align:inherit"></p><p style="text-align:left"><u><b><span style="font-size:14px">Requisition Number</span></b></u></p>R7642 IT Security Engineer - DLP and CASB Engineering - Remote (Open)<p></p><p><b><u>Location</u></b></p>Arizona - Home Teleworkers<p style="text-align:inherit !important"></p><p style="text-align:left !important"><b><u>Additional Locations</u></b></p>Alabama - Home Teleworkers, Alabama - Home Teleworkers, Arkansas - Home Teleworkers, California - Home Teleworkers, Colorado - Home Teleworkers, Connecticut - Home Teleworkers, Delaware - Home Teleworker, District of Columbia - Home Teleworkers, Florida - Home Teleworkers, Georgia - Home Teleworkers, Idaho - Home Teleworkers, Illinois - Home Teleworkers, Indiana - Home Teleworkers, Iowa - Home Teleworkers, Kansas - Home Teleworker, Kentucky - Home Teleworkers, Louisiana - Home Teleworkers, Maine Home Teleworkers, Maryland - Home Teleworkers, Massachusetts - Home Teleworkers, Michigan - Home Teleworkers, Minnesota - Home Teleworkers, Mississippi - Home Teleworker, Missouri - Home Teleworker, Montana - Home Teleworkers {+ 21 more}<p style="text-align:inherit"></p><p style="text-align:left"><u><b><span style="font-size:14px">Job Information</span></b></u></p><p>CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the leading personal lines property and casualty insurance groups in the United States. Here, every employee shapes our mission. We build innovative, human-centered solutions that help AAA members prevent, prepare for, and recover from life's uncertainties. You will join a collaborative, inclusive culture where your strengths have room to grow and your ideas can drive real impact. Step into a role where you can contribute to our shared success through meaningful work.</p><p></p><p>We are actively hiring for an IT Security Engineer - DLP and CASB Engineering - Remote</p><p></p><p><b>Your Role:</b> We are seeking an experienced and highly skilled Security DLP and CASB Engineer with deep expertise in <b>Microsoft Purview DLP, Netskope DLP/CASB, cloud security,</b> and enterprise data protection engineering. This senior role will own the design, implementation, optimization, and ongoing management of DLP and CASB solutions across cloud and hybrid environments. The ideal candidate brings strong technical depth, architectural awareness, and the ability to collaborate across IT, Cloud, Cybersecurity, and Business teams to build scalable, modern, and proactive data‑protection capabilities.</p><p></p><p><b>Your Work: </b>Security Engineering – DLP & CASB Specialist (Cloud Data Protection)</p><p></p><p><b>1. DLP Engineering, Architecture & Implementation</b></p><ul><li>Design, implement, and optimize enterprise‑wide DLP controls using Microsoft Purview DLP, Information Protection, and Netskope DLP/CASB.</li><li>Engineer DLP policies, classifiers, exceptions, and workflows for cloud (SaaS, IaaS, PaaS), endpoint, and web channels.</li><li>Lead integration of DLP and CASB tools with cloud platforms including AWS, Azure, and Google Cloud.</li></ul><p></p><p><b>2. Cloud Security Integration</b></p><ul><li>Partner with cloud architects and application teams to embed DLP and CASB controls into cloud-native environments.</li><li>Support secure data flows across S3, Blob, Snowflake, SQL, and SaaS applications through technical integrations and best‑practice configurations.</li></ul><p></p><p><b>3. Policy Development & Tuning</b></p><ul><li>Develop and enforce advanced DLP policies aligned to security standards, regulatory requirements, and risk tolerance.</li><li>Minimize false positives through tuning, advanced SIT/classifier creation, and rule optimization.</li></ul><p></p><p><b>4. Monitoring, Analytics & Automation</b></p><ul><li>Work closely with SOC and SIEM teams (Splunk preferred) to ensure high‑fidelity telemetry and alerting.</li><li>Build dashboards, analytics, and automation opportunities that improve detection and reduce manual effort.</li><li>Identify trends and potential gaps, driving proactive mitigation strategies.</li></ul><p></p><p><b>5. Incident Response & Troubleshooting</b></p><ul><li>Serve as a technical expert for complex DLP and CASB incidents.</li><li>Perform root‑cause engineering, propose long-term fixes, and partner with SOC on response playbooks.</li></ul><p></p><p><b>6. Governance, Compliance & Reporting</b></p><ul><li>Provide leadership in mapping DLP controls to GDPR, CCPA, PCI, HIPAA, and other frameworks.</li><li>Deliver executive‑level reporting and insights to leadership on DLP posture, risks, and improvements.</li></ul><p></p><p><b>7. Documentation, Standards & Training</b></p><ul><li>Develop standards for data classification, masking, retention, archival, and secure data flows.</li><li>Maintain technical documentation, SOPs, and lead stakeholder education workshops.</li></ul><p></p><p><b>8. Continuous Improvement & Tool Evaluation</b></p><ul><li>Assess new DLP, CASB, and cloud security capabilities; lead POCs and vendor evaluations.</li><li>Drive modernization efforts, platform migrations, and optimization initiatives.</li><li>Perform advanced analysis of DLP and CASB events across Microsoft Purview, Netskope, MDCA, and related tools.</li><li>Identify patterns, trends, mis-configurations, and gaps in controls; recommend or implement tuning and policy improvements.</li><li>Develop and refine DLP rules, classifiers, exceptions, and high‑fidelity detections to reduce false positives and strengthen data‑loss prevention coverage.</li></ul><p></p><p><b>Cross‑Functional Collaboration</b></p><ul><li>Partner closely with SOC, Cyber Defense, and Security Engineering to align on priorities, establish best‑practice playbooks, and improve DLP/incident response workflows.</li><li>Work with IT, Cloud, and Business partners to design scalable, efficient, and compliant processes for protecting internal and external data flows.</li><li>Educate and influence interested parties on DLP findings, risk areas, and recommended mitigations.</li></ul><p><b>Risk‑Based Strategy & Governance</b></p><ul><li>Apply a risk‑based approach to analyze, prioritize, and remediate data protection risks across the enterprise.</li><li>Ensure alignment with regulatory requirements (GDPR, CCPA, PCI, HIPAA where applicable) and corporate security standards.</li><li>Contribute to governance activities, including policy development, standards, and control architecture.</li></ul><p><b>Continuous Improvement & Innovation</b></p><ul><li>Stay current on emerging data‑protection threats, cloud‑security trends, and DLP/CASB industry capabilities.</li><li>Recommend modernization opportunities in DLP technologies, automation, and process streamlining.</li><li>Support and/or lead security awareness and training efforts related to data protection.</li></ul><p><b>Required Experience, Education and Skills</b></p><ul><li>7–10+ years in DLP engineering, cybersecurity, or cloud security roles.</li><li>Strong hands‑on experience with Microsoft Purview, AIP, labels, classifiers, DLP/Information Protection,</li><li>Netskope DLP/CASB, and cloud security controls.</li><li>Proven experience engineering DLP policies, integrating with cloud apps, and supporting enterprise-scale environments.</li></ul><p></p><p><b>Deep understanding of:</b></p><ul><li>MDCA / Defender for Cloud Apps</li><li>AWS, Azure, GCP data-protection patterns</li><li>SIEM (Splunk), log pipelines, dashboards</li><li>Strong troubleshooting and root-cause analysis skills.</li><li>Excellent communication, documentation, and cross-functional collaboration abilities.</li><li>Ability to translate technical DLP concepts for non-technical partners.</li><li>Demonstrated leadership in driving security best practices across teams.</li></ul><p></p><p><b>What would make us excited about you?</b></p><ul><li>CCSP, CISSP, CISM, Azure Security Engineer, AWS Security Specialty, Netskope or Microsoft certifications.</li><li>Vendor certifications (Microsoft Security, Netskope, etc.) are a plus.</li><li>Actively shapes our company culture (e.g., participating in employee resource groups, volunteering, etc.)</li><li>Lives into cultural norms (e.g., willing to have cameras when it matters: helping onboard new team members, building relationships, etc.)</li><li>Travels as needed for role, including divisional / team meetings and other in-person meetings</li><li>Fulfills business needs, which may include investing extra time, helping other teams, etc</li></ul><p></p><p>Please note we are hiring for this role remote anywhere in the United States with the following exceptions: Hawaii and Alaska.</p><p></p><p>#LI-SB1</p><p></p><p><b>Why Choose a Career at CSAA IG?</b></p><p>At CSAA IG, we are a mission-driven organization proudly committed to empowering our members, our employees, and our communities to thrive.</p><p></p><p><b>Recognition:</b> We offer a total compensation package, annual bonus eligibility for most roles, 401(k) with a company match, and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at <a href="https://careers.csaainsurance.aaa.com/us/en/benefits" target="_blank" rel="noopener noreferrer"><span style="overflow-wrap: break-word; display: inline; text-decoration: inherit; hyphens: auto;">https://careers.csaainsurance.aaa.com/us/en/benefits</span></a>.</p><p></p><p><b>Career Growth:</b> We believe in growth for everyone. Here at CSAA IG, leaders and mentors partner with employees to align interests, unlock development opportunities, and support long‑term success.</p><p></p><p><b>Flexible Workplace:</b> We embrace a remote-first culture through our Flexible Workplace. Most employees hold Home-Flex roles, working primarily from home, often with the flexibility to work from various locations including CSAA offices. Our flexible workplace empowers you to balance remote work with intentional in‑person moments that deepen connection and collaboration.</p><p></p><p><b>Inclusion and Belonging:</b> An inclusive and welcoming workplace is the cornerstone of our success. By fostering an environment where people feel valued and heard, we deepen our ability to understand and meet the unique needs of our members. This strengthens innovation and enhances our products and services, giving us a competitive edge in the market.</p><p></p><p><b>Sustainability:</b> As climate change leads to more frequent and severe weather events, we are taking bold action to build more resilient communities and reduce our environmental impact. Submit your application to be considered. We communicate via email, so check your inbox and/or your spam folder to ensure you don’t miss important updates from us.</p><p></p><p>CSAA is committed to providing reasonable accommodations to qualified applicants and employees with disabilities or other limitations. If you would like to request an accommodation to participate in the job application or interview process, please contact <a href="mailto:TalentAcquistion@csaa.com" target="_blank" rel="noopener noreferrer"><span style="overflow-wrap: break-word; display: inline; text-decoration: inherit; hyphens: auto;">TalentAcquistion@csaa.com</span></a></p><p></p><p>If you apply and are selected to continue in the recruiting process, we will schedule a preliminary call with you to discuss the role and will disclose during that call the available salary/hourly rate range based on your location. Factors used to determine the actual salary offered may include location, experience, or education.</p><p></p><p>CSAA does not provide visa sponsorship for this role. Applicants must have authorization to work indefinitely in the US. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.).</p><p></p><p>CSAA Insurance Group is an equal opportunity employer.</p><p>.</p><p style="text-align:inherit"></p><p style="text-align:inherit"></p>The national average salary range for this position is <span style="overflow-wrap: break-word; display: inline; text-decoration: inherit; hyphens: auto;">$122,850.00-$136,500.00.</span> However, we have a location-based compensation structure. Our salary ranges vary and are calculated based on work location. The starting pay range for this position across all the states we hire in is <span style="overflow-wrap: break-word; display: inline; text-decoration: inherit; hyphens: auto;">$122,850.00-$164,000.00.</span>  This role also includes an opportunity for a company-wide annual discretionary bonus, through our Annual Incentive Plan (AIP), of up to 10% of eligible pay.<p style="text-align:inherit"></p><p style="text-align:inherit"></p>This job posting will be unposted on Fri, 29 May 2026.

Back to blog

Common Interview Questions And Answers

1. HOW DO YOU PLAN YOUR DAY?

This is what this question poses: When do you focus and start working seriously? What are the hours you work optimally? Are you a night owl? A morning bird? Remote teams can be made up of people working on different shifts and around the world, so you won't necessarily be stuck in the 9-5 schedule if it's not for you...

2. HOW DO YOU USE THE DIFFERENT COMMUNICATION TOOLS IN DIFFERENT SITUATIONS?

When you're working on a remote team, there's no way to chat in the hallway between meetings or catch up on the latest project during an office carpool. Therefore, virtual communication will be absolutely essential to get your work done...

3. WHAT IS "WORKING REMOTE" REALLY FOR YOU?

Many people want to work remotely because of the flexibility it allows. You can work anywhere and at any time of the day...

4. WHAT DO YOU NEED IN YOUR PHYSICAL WORKSPACE TO SUCCEED IN YOUR WORK?

With this question, companies are looking to see what equipment they may need to provide you with and to verify how aware you are of what remote working could mean for you physically and logistically...

5. HOW DO YOU PROCESS INFORMATION?

Several years ago, I was working in a team to plan a big event. My supervisor made us all work as a team before the big day. One of our activities has been to find out how each of us processes information...

6. HOW DO YOU MANAGE THE CALENDAR AND THE PROGRAM? WHICH APPLICATIONS / SYSTEM DO YOU USE?

Or you may receive even more specific questions, such as: What's on your calendar? Do you plan blocks of time to do certain types of work? Do you have an open calendar that everyone can see?...

7. HOW DO YOU ORGANIZE FILES, LINKS, AND TABS ON YOUR COMPUTER?

Just like your schedule, how you track files and other information is very important. After all, everything is digital!...

8. HOW TO PRIORITIZE WORK?

The day I watched Marie Forleo's film separating the important from the urgent, my life changed. Not all remote jobs start fast, but most of them are...

9. HOW DO YOU PREPARE FOR A MEETING AND PREPARE A MEETING? WHAT DO YOU SEE HAPPENING DURING THE MEETING?

Just as communication is essential when working remotely, so is organization. Because you won't have those opportunities in the elevator or a casual conversation in the lunchroom, you should take advantage of the little time you have in a video or phone conference...

10. HOW DO YOU USE TECHNOLOGY ON A DAILY BASIS, IN YOUR WORK AND FOR YOUR PLEASURE?

This is a great question because it shows your comfort level with technology, which is very important for a remote worker because you will be working with technology over time...