Data Security & Governance Analyst - Innovation & Technology Services
City of Savannah · Savannah, GA · 3 wk ago
Information TechnologyFull-time
About the role
The City of Savannah’s Innovation & Technology Services (ITS) Department is seeking a highly skilled and detail-oriented Data Security & Governance Analyst to lead the implementation and operational management of enterprise data protection and governance capabilities across the organization.
Responsibilities
- Designs and implements Microsoft Purview Information Protection policies to classify and label data (e.g., Public, Confidential, Restricted).
- Establishes and maintains sensitivity labels, retention policies, and data classification schemas for Copilot and the broader M365 use.
- Collaborate with the Microsoft 365 team to define Copilot guardrails, ensuring that AI-generated content does not expose unauthorized data.
- Maintains data access controls and investigates anomalies using tools such as Purview Audit and Microsoft Defender for Cloud Apps.
- Implements Data Loss Prevention (DLP) policies to prevent oversharing of sensitive information internally and externally.
- Manages compliance portals, configures Microsoft Purview roles and permissions, and coordinates with security teams for ongoing audits.
- Provides documentation, training, and support to ensure department-wide adoption of best practices for AI governance.
- Stays current with Microsoft Purview roadmap and evolving features related to AI and data security.
- Identifies, assesses, and mitigates risks related to data security and governance, working with the ITS Security Team to access and remediate potential data breaches and unauthorized access.
- Implement processes and controls to ensure data accuracy, completeness, and consistency.
- Collaborates with stakeholders throughout the City of Savannah to ensure effective data governance practices and validate enforcement.
- Performs other related duties and responsibilities as required.
Requirements
- Bachelor’s degree from an accredited college or university and four (4) years of professional Data Security and Governance experience; or any equivalent combination of education, training and experience provides the requisite knowledge, skills and abilities to successfully perform the responsibilities of the position.
- Proven experience with Microsoft Purview, Information Protection, and Data Loss Prevention.
- Familiarity with Microsoft Copilot, its data architecture, and how it interfaces with M365 workloads.
- Strong understanding of data governance frameworks, zero-trust security, and least-privilege access models.
- Experience with NIST, CJIS, and HIPAA data compliance standards.
Qualifications
- Knowledge of relevant regulations and industry standards.
- Strong understanding of data security and governance principles and practices.
Skills
- Microsoft Certified: Information Protection and Compliance Administrator Associate (SC-400)
- Microsoft Certified: Cybersecurity Architect Expert
- Experience with technology projects
- Able to work with an appropriate sense of urgency
- Understanding of the PMI model and ability to apply to projects as needed
- Knowledge and understanding of data governance best practices
- Skilled in prioritizing multiple projects and tasks simultaneously
- Ability to effectively train others, complete documentation, and present on projects and solutions as needed
- Ability to research, interpret, and apply policies
- Excellent verbal and written communication skills
- Consistently strive to demonstrate the IT Values within various City departments
- Strong understanding of Cybersecurity and Data Management principles
Benefits
We offer great pay, excellent benefits to include medical, dental, and vision plans, life insurance, employee/spouse/child supplemental life insurance, short-term disability, tuition reimbursement, wellness programs, deferred compensation plan (457 B), pension plan, flexible spending account, home purchase assistance and 12 paid holidays!
Women, Minorities, and Veterans Are Encouraged to Apply