Enable job alerts via email!
DLP Testing Analyst
CFC
London
On-site
GBP 40,000 - 60,000
Full time
19 days ago
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Create a job specific, tailored resume for higher success rate.
Job summary
A leading company in the insurance sector is seeking a detail-oriented DLP Testing Analyst to join their CISO team in London. In this critical role, you will monitor data loss prevention alerts, conduct investigations, and collaborate with various stakeholders to enhance data protection efforts. The ideal candidate will have experience with DLP technologies and a strong understanding of regulatory requirements, making a significant impact on the organization's data security posture.
Qualifications
- Prior experience in security operations, DLP, or compliance-focused roles.
- Experience using DLP technologies.
- Familiarity with data handling standards and regulatory requirements.
Responsibilities
- Monitor and analyze alerts generated by DLP tools.
- Conduct investigations of potential DLP policy breaches.
- Produce monthly reports summarizing DLP activity and trends.
Skills
Data Loss Prevention (DLP)
Data Classification
Regulatory Requirements
Insider Threat Detection
User Behavior Analytics (UBA)
Tools
Microsoft Purview
Symantec
Forcepoint
SIEM tools
Job description
DLP Testing Analyst
Department: IT Operations
Employment Type: Permanent - Full Time
Location: London
Reporting To: Kirsty Kelly
Description
We are looking for a detail-oriented and analytical DLP Analyst to join our CISO team. In this role, you will play a critical part in protecting sensitive data across our organization by monitoring, managing, and responding to data loss prevention (DLP) alerts. As part of the CISO team, you’ll support the ongoing operations and improvement of our DLP capabilities and be the first line of investigation and escalation for potential data policy violations.
Reporting to the Head of Information Security, you will work directly with IT, HR, compliance, and business stakeholders to investigate, document, and help resolve data protection issues.
Reporting to the Head of Information Security, you will work directly with IT, HR, compliance, and business stakeholders to investigate, document, and help resolve data protection issues.
About the role
Within this role, you will be responsible for:
- Monitoring and analysing alerts generated by DLP tools to identify potential data exfiltration and misuse
- Triaging alerts, assessing risk levels, and prioritising incidents for investigation.
- Conducting in-depth investigations of potential DLP policy breaches using available tools and logs. You will document findings and write clear, structured investigation reports for the Head of Information Security
- Escalating high-risk incidents to the Group CISO or repeat offenses for further action or disciplinary review with HR.
- Supporting the management, tuning, and improvement of DLP tools and rulesets to reduce false positives and increase detection accuracy.
- Collaborating with IT or third-party providers to ensure DLP systems are operational, updated, and aligned with business needs and regulation requirements.
- Producing clear, data-driven monthly reports and presentations for the Group CISO summarising DLP activity, trends, and incident statistics.
- Identifying emerging risks or patterns and make recommendations for policy or control improvements.
- Contributing to the enhancement of DLP policies and related documentation.
- Supporting awareness efforts by identifying areas where training or guidance can help reduce accidental data breaches.
About you
The ideal candidate for this role will have prior experience in a security operations, DLP, or compliance-focused roles. Within this role, they would have gained:
- Experience using DLP technologies (e.g., Microsoft Purview, Symantec, Forcepoint, or similar).
- Familiarity with data classification, data handling standards, and regulatory requirements (e.g., NYDFS, GDPR).
- Knowledge of insider threat detection and user behavior analytics (UBA).
- Exposure to security incident and event management (SIEM) tools.
Core Values
Love what you do:
We show up each day ready to take on the world. Our passion and intensity set us apart and makes the difference to our colleagues, customers, brokers and carriers.
Challenge everything:
We’re never afraid to question the way that things are done and we constantly challenge ourselves and others to makes things better.
Have fun, be good:
Insurance is a serious business, but we don’t take ourselves too seriously. We make it fun to work at CFC, we welcome all viewpoints, and we treat everyone how we would expect to be treated.
We show up each day ready to take on the world. Our passion and intensity set us apart and makes the difference to our colleagues, customers, brokers and carriers.
Challenge everything:
We’re never afraid to question the way that things are done and we constantly challenge ourselves and others to makes things better.
Have fun, be good:
Insurance is a serious business, but we don’t take ourselves too seriously. We make it fun to work at CFC, we welcome all viewpoints, and we treat everyone how we would expect to be treated.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Land a better
job faster
job faster
