Information Risk & Data Protection Analyst

About this role

*SOLV Energy is an engineering, procurement, construction (EPC) and solar services provider for utility solar, high voltage substation and energy storage markets across North America.*
Job Description Summary:
As the Information Risk & Data Protection Analyst, you will own the company’s data loss prevention (DLP), insider risk, and information governance programs. By leveraging Microsoft Purview and other enterprise tools, you will design, implement, and manage controls to protect sensitive data, reduce insider risk, and ensure compliance with evolving regulatory requirements. You will partner with IT, Cybersecurity, Compliance, and Legal to ensure that data protection policies are not only enforced but also understood and adopted across the enterprise.


This role can be fully remote or based full-time in the San Diego, CA or Bend, OR office. Specific location details and expectations will be discussed during the interview process.


Job Description:

• This job description reflects management's assignment of essential functions; it does not prescribe or restrict the tasks that may be assigned

Position Responsibilities and Duties:

• Develop, implement, and maintain data protection policies, procedures, and controls to prevent unauthorized data movement or exfiltration.
• Configure, tune, and monitor Microsoft Purview DLP, Insider Risk Management, and Information Protection policies.
• Analyze DLP and insider risk alerts, escalating incidents as necessary to SOC/Incident Response.
• Conduct risk and gap assessments on data handling practices, cloud applications, and third-party data sharing – turning assessment results into action plans.
• Collaborate with Compliance, Legal, and IT to ensure data classification, retention, and protection requirements are met.
• Track and report metrics on DLP/Insider Risk effectiveness (e.g., number of true vs. false positives, incidents investigated, SLA closure rates).
• Lead the rollout of security aware...