Product Owner – DLP Engineering with German

ImpacT Hire is supporting one of our clients — a major international digital technology center building modern cybersecurity capabilities across the organization. As part of their Cyber Defense & Base Services unit, they are now expanding their Data Protection domain and seeking a Product Owner – DLP Engineering.

This is a key strategic role for an experienced cybersecurity professional who will define the vision, roadmap, and operating model for DLP capabilities across a global enterprise. The PO will not configure tools directly — instead, they will shape the strategy, create requirements, coordinate stakeholders, and ensure that DLP measures are properly implemented by the engineering teams.

Responsibilities:
➢ Define and own the vision, roadmap, and backlog for Data Loss / Leakage Prevention solutions across the entire organization;
➢ Partner with stakeholders from IT Security, Risk, Compliance, HR, and Business Units to gather requirements and align with regulatory obligations;
➢ Translate business, legal, and compliance needs into clear product requirements and user stories;
➢ Oversee the end-to-end lifecycle of the DLP controls, covering endpoint, email, cloud, and network domains;
➢ Collaborate with engineering teams to ensure that DLP measures are properly implemented, monitored, and continuously improved;
➢ Work closely with data protection, InfoSec, and security operations teams to align capabilities and ensure controlled monitoring practices;
➢ Communicate with works councils / unions regarding employee monitoring boundaries and compliance expectations;
➢ Manage relationships with tool vendors and evaluate new technologies in the DLP landscape;
➢ Monitor KPIs, performance, and adoption of DLP controls and prepare reports for senior management and regulators;
➢ Drive continuous improvement of processes including incident triage, policy tuning, exception handling, user awareness, and reporting;
➢ Act as the primary contact point for DLP Engineering — aligning stakeholders, presenting recommendations, and guiding decisions.

Requirements:
➢ 7+ years of experience in cybersecurity or information security, including 3+ years in a functional leadership role (no disciplinary management required);
➢ Strong experience with data protection regulations, compliance frameworks, and enterprise security governance;
➢ Hands-on understanding of DLP technologies, such as Microsoft Purview, Proofpoint, Symantec, Palo Alto Networks DLP, etc.;
➢ Ability to communicate technical monitoring measures, constraints, and visibility limitations to both administrators and works councils;
➢ Experience creating vision, strategy, and operating models for security products or controls;
➢ Strong stakeholder management and communication skills — able to balance business needs with regulatory constraints;
➢ Experience working in Agile/Scrum environments;
➢ Fluent English and advanced German (B2/C1) are required.

Nice to Have:
➢ Professional certifications such as CISSP, GEIR, GCTI, GREM, or equivalent;
➢ Experience in Banking, Finance, or similarly regulated industries;
➢ Prior experience as a Security Lead, Consultant, or PO for security technologies;
➢ Exposure to cloud migration, hybrid environments, or enterprise-scale data governance.

What We Offer:
➢ 25 days of annual paid leave;
➢ Flexible working hours, home office, and work-from-abroad options;
➢ Premium health & dental insurance;
➢ Food vouchers;
➢ Multisport card;
➢ Coverage for certifications, trainings, and conferences.

If you are an experienced cybersecurity professional with a passion for building enterprise-grade data protection capabilities, this is an opportunity to define the future of DLP within a large international organization.