Job Title: Cybersecurity Specialist - Data Loss Prevention (DLP)
We are seeking a Cybersecurity Specialist with expertise in Data Loss Prevention (DLP) to report to the Director of Info Sec - Insider Threat. The role involves developing and evolving the organization's DLP capabilities to enhance security and data protection.
Responsibilities:
- Configuration and Management: Configure DLP policies, rules, and exceptions based on data classification guidelines and regulatory requirements, ensuring controls for data in motion, in use, and at rest.
- Integration: Develop and integrate the DLP solution with existing security systems such as firewalls and secure web gateways for comprehensive monitoring and detection.
- Monitoring and Auditing: Monitor DLP dashboards, alerts, and reports to identify potential data leakage incidents. Conduct regular audits to validate policy effectiveness.
- Incident Response: Collaborate with legal, HR, and other stakeholders on incident response and policy enforcement.
- Policy Refinement: Monitor incidents, create guidelines for policy adjustments, and refine policies to ensure continuous improvement.
- Policy Maintenance: Work with Governance and Risk teams to develop and update DLP policies and procedures.
- Metrics and Reporting: Develop support procedures and performance metrics reports.
- Awareness and Collaboration: Communicate security risks to business partners and technical teams. Collaborate with dev-ops, system, network, and security administrators to ensure secure design, development, and implementation of DLP solutions.
Qualifications:
- Minimum of 5 years of measurable cybersecurity experience with specialization in Data Loss Prevention (DLP).
- Experience with DLP program implementation and evolution.
- Knowledge of data classification and data management policies.
- Expertise in network, email, and endpoint DLP solutions.
- Understanding of DLP policy lifecycle.
- Strong background in architecting, engineering, and automating security solutions in a global environment focused on DLP.
- Ability to design countermeasures to identify security risks.
- Knowledge of DLP, CASB, host firewalls, and endpoint protection.
- Technical acumen with strong communication and influence skills.
- Well-informed on key data security controls.
Technologies or Skills Required:
DLP - Microsoft Purview
Preferred Attributes:
- Experience with other DLP tool stacks is a significant asset.
Language:
Bilingual in English and French.