Sr. Data Security Engineer Security

Job Description

Company OverviewDocusign brings agreements to life. Over 5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people’s lives.

With intelligent agreement management, Docusign unleashes business-critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity. Using Docusign’s Intelligent Agreement Management platform, companies can create, commit, and manage agreements with solutions created by the #1 company in e-signature and contract lifecycle management (CLM). What you’ll doWe are seeking a talented and proactive Data Security Engineer to join our team.

In this role, you will be responsible for implementing and guiding best practices across our Data Security strategy. You will design, deploy, and maintain technical controls including data encryption, Data Loss Prevention (DLP), and Data Security Posture Management (DSPM) to ensure the protection of company and customer data.

You will collaborate with engineering, product, and security teams to ensure that data protection initiatives are secure, compliant, and aligned with business objectives. This position is an individual contributor role reporting to the Sr Director of AI & Data Security. ResponsibilityImplement and guide best practices across the organization’s Data Security strategy, ensuring the confidentiality, integrity, and availability of dataDesign, deploy, and maintain data encryption standards and solutions for data in transit and at rest, managing Key Management Systems (KMS) and PKI infrastructureEngineer and manage Data Loss Prevention (DLP) controls across endpoints, networks, and cloud environments to prevent unauthorized data exfiltrationImplement and operationalize Data Security Posture Management (DSPM) tools to identify, classify, and mitigate risks across cloud data storesCollaborate with cross-functional teams to integrate data security best practices into the software development lifecycle (SDL) and CI/CD pipelinesConduct technical risk assessments and threat modeling specific to data storage, processing, and transmission flowsDevelop and enforce technical guardrails and policies for data handling, access control, and classificationMonitor, detect, and respond to data security incidents, working closely with the detection and response teamsTranslate technical data security risks into business impact and communicate recommendations to stakeholdersJob DesignationHybrid:Employee divides their time between in-office and remote work.

Access to an office location is required. (Frequency: Minimum 2 days per week; may vary by team but will be weekly in-office expectation) Positions at Docusign are assigned a job designation of either In Office, Hybrid or Remote and are specific to the role/job. Preferred job designations are not guaranteed when changing positions within Docusign.

Docusign reserves the right to change a position’s job designation depending on business needs and as permitted by local law. What you bringBasic8+ years of experience in security engineering, with a focus on data security, application security, or infrastructure securityExperience with data encryption standards, protocols (TLS, AES), and key management lifecyclesExperience implementing and managing Data Loss Prevention (DLP) technologies (e.

g. , Netskope, Zscaler, Symantec)Experience with Cloud Data Security and DSPM tools within major cloud platforms (AWS, Azure, GCP)Experience in programming or scripting languages such as Python, Go, or Java for automation and toolingExperience with data governance, data classification, and secure data handling practicesExperience operationalizing security controls in complex enterprise environmentsPreferredBachelor’s or Master’s degree in Computer Science, Information Security, or a related fieldExcellent communication and collaboration skills, with the ability to influence technical and non-technical stakeholdersCertifications: CISSP, CCSP, CISM, CDPSE, or equivalent. Knowledge of relevant regulations and standards (e.

g. , GDPR, CCPA, NIST, ISO 27001) as they pertain to data protectionExperience with database security, including activity monitoring and access controlsFamiliarity with Infrastructure as Code (IaC) and securing CI/CD pipelinesExperience driving automation strategies and data-driven security insightsWage TransparencyPay for this position is based on a number of factors including geographic location and may vary depending on job-related knowledge, skills, and experience. Based on applicable legislation, the below details pay ranges in the following locations: Illinois, Colorado, Massachusetts and Minnesota: $151,200.

00 – $213,600. 00 base salary Washington, Maryland, New Jersey and New York (including NYC metro area): $151,200. 00 – $222,450.

00 base salary This role is also eligible for the following:Bonus: Sales personnel are eligible for variable incentive pay dependent on their achievement of pre-established sales goals. Non-Sales roles are eligible for a company bonus plan, which is calculated as a percentage of eligible wages and dependent on company performance. Stock: This role is eligible to receive Restricted Stock Units (RSUs).

EWJD3