Data Loss Prevention Security Engineer

  • Location: Brentwood, TN
  • Type: Contract to Hire
  • Job #244037

Overall Job Summary
This position requires minimal supervision, the Data Security Engineer is responsible for protecting the corporate information assets of the company. The Data Security Engineer is responsible for configuring and improving DLP policies across multiple technologies, working towards increasing DLP Program coverage, building and maintaining DLP Program process documentation, and defining new processes and controls to mature the DLP.

Essential Duties and Responsibilities (Minimum of 5% of time spent)
 

  1. Maintain DLP technologies and tools to monitor, detect, and prevent data leakage or unauthorized data transfers.
  2. Performs data protection monitoring and reporting, analyzes security alerts, and escalates security alerts to local support teams.
  3. Working with vendors to implement and support DLP technology, including troubleshooting and upgrading.
  4. Maintaining DLP technology, configuring policies, and compiling reports for analytics.
  5. Monitoring and responding to alerts generated from DLP systems and other technologies.
  6. Working with the Incident Response team to escalate and respond to potential or real threats
  7. Conduct frequent assessments of data handling processes, identify vulnerabilities, and recommend security enhancements to track and mitigate risks.
  8. Collaborate with internal and external stakeholders, such as IT teams, legal, compliance, and auditors, to ensure alignment with data security and privacy requirements.
  9. Support audit and compliance activities and maintain documentation, including policies, procedures, incident reports, and configuration details.
  10. Stay up to date with the latest industry trends, emerging threats, and advancements in DLP technologies, recommending and implementing improvements.
  11. Perform incident response processes, including investigation, analysis, and remediation.   

Qualifications

  • 3+ years of experience with managing DLP tools.
  • Software Tools: Netskope, Proofpoint, M365
  • Prior experience with industry DLP, CASB, data encryption and monitoring tools, and data protection best practices.
  • Demonstrated experience with incident remediation automation and data at rest process development, especially within M365 environments.
  • Demonstrated Information Security understanding and specifically industry best practices for the development of data protection processes.
  • One or more Information Security Certifications preferred: CISSP, CSSLP, CISM, CCSP, GSLC, GSEC, CISA, SSCP.
  • Bachelor’s Degree in related field or equivalent work experience.
  • 3-5 years of experience in related field

High Demand IT Specialized skills:
Strong understanding of information security and network fundamentals.

Other knowledge, skills, or abilities:

  • Working with vendors to implement and support DLP technology, including troubleshooting and upgrading.
  • Maintaining DLP technology, configuring policies, and compiling reports for analytics.
  • Monitoring and responding to alerts generated from DLP systems and other technologies.
  • Working with the Incident Response team to escalate and respond to potential or real threats.
  • Demonstrated leadership ability, including experience leading complex programs involving multiple business and technical stakeholders.
  • Excellent written and verbal presentation skills with the ability to communicate professionally with team members, stakeholders, and senior leadership.
  • Strong knowledge of malicious insider threat indicators, such as those associated with data theft of intellectual property, sabotage, and espionage.
  • Knowledge of cybersecurity regulations and compliance standards, such as HIPAA, PCI, NIST.
  • Mentor junior team members on relevant processes, tools, and procedures

Working Conditions

  • Normal office conditions.
  • Occasional evening and weekend work to meet deadlines.
  • Some travel may be required for the purpose of off-site software and system applications management.

Core Competencies

Job Impact: Interpretations of established precedents are broader in nature.  Thinking is within well-defined, somewhat diversified, procedures with many precedents covering most situations and/or readily available assistance. 

Business Impact: Responsible for a greater variety of tasks and duties. Operates within standardized procedures and well-defined policies. Permitted to determine own priorities but must receive permission to deviate from standard procedures. Allowed some flexibility and initiative to complete work efficiently. Periodic supervision before, during, and after tasks are completed. Goals and objectives have a daily/weekly focus.

 

Attach a resume file. Accepted file types are DOC, DOCX, PDF, HTML, and TXT.

We are uploading your application. It may take a few moments to read your resume. Please wait!