Staff Cybersecurity Architect - Data Security & Data Loss Prevention

About Reinsurance Group of America

RGA is a purpose-driven organization working to solve today's challenges through innovation and collaboration. A Fortune 200 Company and listed among the World's Most Admired Companies, we're the only global reinsurance company to focus primarily on life- and health-related solutions. Join our multinational team of intelligent, motivated, and collaborative people, and help us make financial protection accessible to all.

Role Overview

The Staff Cybersecurity Architect – Data Security & Data Loss Prevention is a senior technical leader responsible for designing, implementing, validating, and continuously measuring enterprise data security posture, data protection controls, and reference architectures. This role ensures data protection controls are embedded throughout endpoint, identity, collaboration, storage, data platforms and cryptographic trust services, applying secure-by-design and zero trust principles across multi-cloud, SaaS, and on-premises environments.

The Data Security & Data Loss Prevention architect operates at the intersection of architecture, engineering, and audit readiness, proactively translating regulatory and business risk into deployable, testable, and measurable controls. The architect will champion controls that are not only well-designed but operationalized, continuously validated, and demonstrably effective.

Principal Duties

• Develop, maintain, and evolve enterprise data security and data loss prevention architectures aligned to business objectives, regulatory requirements, and data classification standards
• Champion the integration of data-centric security controls across endpoint, identity, collaboration, storage, and data platforms, ensuring secure-by-default and least privilege principles
• Design and operationalize Microsoft Purview Information Protection and DLP capabilities, including sensitivity labeling, classification, policy enforcement, and user experience considerations
• Architect and implement Microsoft Defender capabilities (Endpoint, Identity, Office 365, Cloud Apps) to protect data throughout its lifecycle
• Serve as a senior technical authority for data security and DLP across Windows, macOS, Windows Server, and Linux environments, ensuring consistent enforcement across heterogeneous platforms
• Integrate Microsoft Security capabilities with complementary platforms such as Varonis Data Security to provide comprehensive data protection
• Author and maintain data security and DLP standards, reference architectures, and technical guardrails aligned to NIST and internal security frameworks
• Convert business risks and regulatory obligations into technical requirements and traceable, measurable mitigation strategies
• Evaluate new platforms, tools, and vendors for strategic fit, security posture, and architectural impact