Own the end-to-end deployment, configuration, and operationalization of the firm's DSPM platform, including onboarding data sources across public cloud environments, cloud data warehouses, SQL databases, and network file shares
Triage and prioritize DSPM findings, coordinate remediation with data owners and infrastructure teams, and build reporting workflows that translate discovery results into actionable risk reduction
Rationalize DSPM capabilities across the security tool portfolio to eliminate overlap between cloud-native application protection, DSPM, and endpoint-based data security platforms
Partner with Cloud Operations and application teams to navigate technical integration challenges, including IAM permissions, network connectivity, and change management processes
Data Classification & Governance
Design and implement a data classification framework that establishes sensitivity levels, ownership models, and handling requirements for the firm's data
Develop and maintain data classification policies that inform downstream controls across DLP, DSPM, access governance, and backup immutability
Serve as the security team's subject matter expert on data governance, partnering with Compliance and business stakeholders to align classification efforts with regulatory and operational requirements
AI Security
Evaluate, deploy, and manage AI security monitoring tools to provide visibility into sanctioned and unsanctioned AI usage across the enterprise
Develop detection capabilities for sensitive data exposure through GenAI workflows, including monitoring for data leakage via AI prompts, outputs, and integrations with enterprise tools
Establish and maintain an AI governance operating model in coordination with the CISO and the Data Science team, including sanctioned tool inventories, acceptable use guardrails, and risk-based approval workflows for new AI applications
Stay current on evolving AI security frameworks (OWASP LLM Top 10, NIST AI RMF, MITRE ATLAS) and translate emerging threats into practical defensive measures for the firm
Data Loss Prevention & Insider Threat
Manage and enhance the firm's DLP and insider threat platforms to prevent unauthorized data movement across endpoints, cloud applications, and email
Develop and tune DLP policies informed by DSPM discovery and data classification outputs, ensuring controls are risk-proportionate and operationally sustain
Benefits
Equity / stock options
Additional Information
Bain Capital Overview:
With approximately $215 billion of assets under management, Bain Capital is one of the world's leading private investment firms. We create lasting impact for our investors, teams, businesses, and the communities in which we live. Over four decades we have strategically grown our platform to focus on Private Equity, Growth & Venture, Capital Solutions, Credit, and Real Assets. Today, our team includes 1,985+ employees in 24 offices on four continents.
We partner differently to help people and companies embrace possibility and realize potential. Founded as a private partnership in 1984, we have fostered a culture of innovation, entrepreneurialism, and agility, empowering our people to define and own their career trajectories. Today, our partnership approach enables us to pursue strategic growth, build enduring relationships with a robust external network, and collaborate across our integrated platform to connect the deep and diverse expertise that unlocks breakthrough insights.
Our people are the heart of our advantage. Colleagues at all levels have a seat at the table as they tackle business challenges with a principal investor mindset. By asking incisive questions, respectfully challenging one another, and remaining intellectually agile, we work together to achieve exceptional outcomes.
For more information visit: Bain Capital
Position Overview
Bain Capital's Information Security team is seeking a Senior Engineer, Data Protection & AI Security to own and advance the firm's data security posture and AI security capabilities. This is a hands-on engineering role responsible for deploying, operationalizing, and maturing the platforms and processes that protect the firm's most sensitive data-across cloud environments, SaaS applications, databases, and AI workflows.
The ideal candidate combines deep technical expertise in data security platforms (DSPM, DLP, data classification) with a forward-looking understanding of how AI adoption introduces new data risks. This person will work closely with Security Engineering, Cloud Operations, the Data Science team, and platform owners to build a cohesive data protection program-one that addresses both traditional data governance gaps and the emerging challenge of securing enterprise AI tools and workflows.
This is not a monitoring or compliance role. This is an engineering role for someone who builds things, owns outcomes, and can operate independently in a fast-moving environment with a growing security platform portfolio.
Bain Capital · Boston