Data Loss Prevention Analyst

The Cyber Security Data Protection service is responsible for multiple programs across Ford to enable a securely connected digital business as well as preventing the unauthorized disclosure of the company’s most sensitive data. The service team is responsible for both the Insider Threat program and Data Loss Prevention program to increase our security posture against data loss.

Basic Qualifications:

• Bachelor’s degree or higher
• 1+Years, Experience in a cybersecurity role
• Advanced English proficiency
• Experience in Data Protection / Information security Roles
• Basic-mid Knowledge in Query Languages
• Strong knowledge of the Microsoft Office products, proficiency in Excel

PreferredQualifications:

• Basic-mid knowledge in KQL
• Strong problem solving, decision making and analytical skills
• Demonstrated integrity in a professional environment
• Process driven mind-set; can-do, find-a-way attitude
• Ability to work independently, manage work to ensure quality, on-time delivery
• Strong Leadership skills with the ability to train and advise team members
• Strong written/oral communication skills (including management collaboration)
• Highly motivated and self-driven
• Excellent interpersonal skills
• Understanding of the role information security and compliance play within a global organization
• Experience with data analysis and collaborative tools
• Experience with RSA-Archer Case Management tool
• Technical proficiency in multiple information technologies and/or Cyber security tools
• Experience/Knowledge with computer aided design tools (e.g. AutoCAD, CATIA, or Visio)
• Experience/Knowledge with policy/rule tools (e.g. SAS)
• Strong understanding of security practices
• Experience/Knowledge with one or more technology areas (e.g. operating systems, network, database, programming/coding, etc.)
• Experience/Knowledge of one or more security domains (Risk Management, Asset Security, Architecture & Engineering, Communication & Network, Identity & Access Management, Assessment & Testing, Operations, Software Development)
• Experience/Knowledge with one or more of the following: IT Asset Management, Active Directory, HTML
• Experience/Knowledge with API, visual programming and programming languages such as Python, GIT, VBA, Regex
• Proficiency in using DLP Monitoring tools
• Ability to read additional language(s) (e.g. Spanish, Mandarin, Thai, Portuguese) is a plus

• Remediate DLP alerts and perform analysis for triage/escalation
• Analyze and aggregate data loss prevention data to support the enhancement/tuning of existing policies and determine additional controls
• Experience/ willing to work with multicultural, cross-functional and/or multi-regional teams.
• Analyze global data loss prevention data to provide metric reporting
• Conduct new hire orientation and DLP training
• Establish and manage relationships with key business stakeholders
• Translate business requirements into deliverables and negotiate feasibility with available tooling/resources
• Define, implement and support process and technology improvements related to preventing unauthorized disclosure, modification, removal or destruction of information(e.g. USB block program)
• Serving as a DLP subject matter expert within the organization
• Collaborating on the DLP rule development lifecycle including policy development, response rules, and maintenance
• Support with potential breach investigations as well as having knowledge of the relevant data privacy and protection regulations
• Performs enhanced monitoring activities and provides resolution on it to the involved stakeholders