Data Loss Prevention Engineer
What will your day look like?
You will implement, maintain, monitor and manage secure solutions. The Engineer delivers these solutions in accordance with the organization’s architectural designs, best practices, and regulatory or compliance requirements. As risks change, the Data Loss Prevention Engineer will recommend modifications and enhancements to ensure the organization is evolving with the threat landscape. With an emphasis on securing systems, applications, third-party connections, service providers and ancillary systems, the Data Loss Prevention engineer is responsible for securing business-to-business initiatives, third-party relationships, outsourced solutions and vendors. The incumbent will implement, monitor and manage secure solutions that address modern day issues. General direction is received from the Manager, Cyber Security Operations.
Responsibilities
Do you see yourself doing this?
- Handle day-to-day implementation, monitoring and operational support of hardware, software, customer applications, managed solutions and service provider relationships.
- Actively participate and lead security team meetings that facilitate secure design.
- Engage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects. Additionally, deliver projects on time, within budget and in accordance with service level agreements (SLAs).
- Assist with incident response and system stability issues as they occur. This may include involvement outside of regular work hours, and responsiveness is expected.
- Implement solutions observing compliance – Health Information Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), Payment Card Industry (PCI), Sarbanes-Oxley Act (SOX), etc. – and privacy laws.
- Work in tandem with architects, the security operations center (SOC), incident responders (in cases of anomalous activity and host compromise), and technology infrastructure and development team members.
- Respond to and handle service and escalation tickets within SLA expectations.
- Develop security test plans from architectural design. Identify deficiencies and make enhancements to ensure production is not impacted.
- Participate regularly in change project and change management meetings.
- Research, validate and deploy solutions meeting security and business needs.
- Follow security engineering fundamentals and processes as outlined in NIST 800-160.
- Influence the planning and execution of incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
- Focus on driving security efficiencies, enabling security team members to work on more advanced tasks.
- Conduct performance testing to stress the limitations of security solutions while at the same time ensuring business innovation and day-to-day processes are not negatively impacted.
Qualifications
What makes you a great fit?
You’ll be a great fit if in addition to the completion of a Bachelor's degree in Computer Science, Information Assurance, MIS or related field, or equivalent industry experience, required, and you have:
- Minimum 5+ years’ experience in cybersecurity, including compliance and risk management with a system and network security engineering background.
- Highly technical and analytical expertise, with a proven deep background (preferred 5+ years’ IT experience in addition to cybersecurity) in technology design, implementation and delivery.
- Experience in cloud computing technologies, including software, infrastructure and platform-as-a-service, as well as public, private, and hybrid environments.
- Extensive knowledge of DLP technologies that scan and protect email, web browsing, file shares, CASB and end points (Microsoft DLP preferred).
- Experience integrating DLP with SIEM, alerting and incident handling processes.
- Skilled in meeting vulnerability and penetration testing requirements.
- Excellence in communicating business risk from cybersecurity issues.
- Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
- Experience with Amazon Web Services (AWS) or Microsoft Azure.
- Proficient with scripting in Python, JavaScript, PowerShell, PHP or Ruby.
- DevOps background with experience in compliance obligations.
- Experience with one or more of the following: ISO 27001, NIST, PCI Data Security Standard (PCI DSS), HIPAA, Health Information Technology for Economic and Clinical Health (HITECH) Act, SOX, the General Data Protection Regulation (GDPR), Center for Internet Security (CIS) standards or Service Organization Controls (SOC) 2.
- Working knowledge of Windows, Linux and Unix.
- Familiarity with state privacy laws.
- Ability to think strategically and tactically, with effective decision-making skills.
- Holds or working toward one or more including: Azure, AWS and VMWare certifications.
When you’re happy, we’re happy!
As a thank you for joining our team, you’ll benefit from:
- Competitive medical, dental, and free vision benefits
- Competitive compensation plan
- Contributions towards gym memberships
- Generous PTO and banking holidays off