Define and execute the enterprise Purview strategy and multi-year roadmap, aligning information governance priorities to business needs and risk posture.
Design and maintain the enterprise data classification and labeling model (sensitivity labels, auto-labeling where appropriate), ensuring clear handling expectations and consistent end-user experience.
Implement, tune, and operate Data Loss Prevention (DLP) policies across endpoints and Microsoft 365 workloads (e.g., Exchange, Teams, SharePoint/OneDrive), balancing protection with productivity.
Establish and manage retention and records governance (retention labels/policies, disposition workflows), enabling defensible compliance and lifecycle management of content.
Build and run Insider Risk and related controls (policy design, indicator governance, escalation paths) in partnership with HR, Legal, and Cybersecurity.
Partner with Legal and Compliance to operationalize eDiscovery processes (holds, collections, case workflows), ensuring repeatable execution and audit readiness.
Define and enforce data boundaries and collaboration controls (information barriers / boundaries and policy guardrails) to reduce inappropriate sharing and insider risk.
Drive platform integrations and policy extension to adjacent systems (identity, endpoint management, security tooling, and prioritized SaaS platforms), ensuring consistent enforcement and telemetry.
Operate monitoring, reporting, and governance rhythms: dashboards/metrics, control health, policy exceptions, and executive-ready compliance updates.
Own operational processes and documentation (runbooks, change control, standards, training) and guide cross-functional teams to ensure consistent adoption and execution without direct authority.
Provide licensing/budget input and support vendor/auditor engagement as needed, ensuring the program is sustainable and scalable.

Requirements

Bachelor’s degree required.
8–10 years of relevant experience in information protection, data governance, security/compliance, or enterprise risk controls.
Expert-level capability in Microsoft Purview, including: data classification, labeling, DLP, Insider Risk, retention, eDiscovery, and information barriers/boundaries.
Demonstrated ability to translate legal, regulatory, HR, and cybersecurity requirements into scalable enterprise policies and operational processes.
Strong cross-functional leadership and influence skills; ability to drive governance decisions and execution through partners (HR, Legal, Cyber, IT, Compliance) without direct reports.
Experience operating compliance programs (control health, reporting, audits, metrics) and building sustainable operating models (standards, runbooks, change governance).
Preferred certifications: CISSP, CIPP, and/or CIPM (or equivalent security/privacy credentials).

Benefits

Paid "UA Give Back" Volunteer Days: Work alongside your team to support initiatives in your local community
Under Armour Merchandise Discounts
Competitive 401(k) plan matching
Maternity and Parental Leave for eligible and FMLA-eligible teammates
Health & fitness benefits, discounts and resources- We offer teammates across the country programs to promote physical activity and overall well-being

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

data classificationlabelingData Loss Prevention (DLP)Insider Riskretention governanceeDiscoveryinformation barrierspolicy designmonitoringreporting

Soft Skills

cross-functional leadershipinfluence skillsgovernance decision-makingexecution without direct authority

Certifications

CISSPCIPPCIPM