Company Overview Docusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people’s lives. With intelligent agreement management, Docusign unleashes business-critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity. Using Docusign’s Intelligent Agreement Management platform, companies can create, commit, and manage agreements with solutions created by the #1 company in e-signature and contract lifecycle management (CLM). What you'll do We are seeking a talented and proactive Data Security Engineer to join our team. In this role, you will be responsible for implementing and guiding best practices across our Data Security strategy. You will design, deploy, and maintain technical controls including data encryption, Data Loss Prevention (DLP), and Data Security Posture Management (DSPM) to ensure the protection of company and customer data. You will collaborate with engineering, product, and security teams to ensure that data protection initiatives are secure, compliant, and aligned with business objectives. This position is an independent contributor role reporting to the Sr Director of AI & Data Security. Responsibility Implement and guide best practices across the organization's Data Security strategy, ensuring the confidentiality, integrity, and availability of data Design, deploy, and maintain data encryption standards and solutions for data in transit and at rest, managing Key Management Systems (KMS) and PKI infrastructure Engineer and manage Data Loss Prevention (DLP) controls across endpoints, networks, and cloud environments to prevent unauthorized data exfiltration Implement and operationalize Data Security Posture Management (DSPM) tools to identify, classify, and mitigate risks across cloud data stores Collaborate with cross-functional teams to integrate data security best practices into the software development lifecycle (SDL) and CI/CD pipelines Conduct technical risk assessments and threat modeling specific to data storage, processing, and transmission flows Develop and enforce technical guardrails and policies for data handling, access control, and classification Monitor, detect, and respond to data security incidents, working closely with the detection and response teams Translate technical data security risks into business impact and communicate recommendations to stakeholders Job Designation Hybrid: Employee divides their time between in-office and remote work. Access to an office location is required. (Frequency: Minimum 2 days per week; may vary by team but will be weekly in-office expectation) Positions at Docusign are assigned a job designation of either In Office, Hybrid or Remote and are specific to the role/job. Preferred job designations are not guaranteed when changing positions within Docusign. Docusign reserves the right to change a position's job designation depending on business needs and as permitted by local law. What you bring Basic 5+ years of experience in security engineering, with a focus on data security, application security, or infrastructure security Deep understanding of data encryption standards, protocols (TLS, AES), and key management lifecycles Experience implementing and managing Data Loss Prevention (DLP) technologies (e.g., Netskope, Zscaler, Symantec) Experience with Cloud Data Security and DSPM tools within major cloud platforms (AWS, Azure, GCP) Proficiency in programming or scripting languages such as Python, Go, or Java for automation and tooling Strong understanding of data governance, data classification, and secure data handling practices Experience operationalizing security controls in complex enterprise environments Preferred Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field Certifications: CISSP, CCSP, CISM, CDPSE, or equivalent Knowledge of relevant regulations and standards (e.g., GDPR, CCPA, NIST, ISO 27001) as they pertain to data protection Experience with database security, including activity monitoring and access controls Familiarity with Infrastructure as Code (IaC) and securing CI/CD pipelines Experience driving automation strategies and data-driven security insights Excellent communication and collaboration skills, with the ability to influence technical and non-technical stakeholders Life at Docusign Working here Docusign is committed to building trust and making the world more agreeable for our employees, customers and the communities in which we live and work. You can count on us to listen, be honest, and try our best to do what’s right, every day. At Docusign, everything is equal. We each have a responsibility to ensure every team member has an equal opportunity to succeed, to be heard, to exchange ideas openly, to build lasting relationships, and to