What are the responsibilities and job description for the Ender-IT | Data Loss Prevention (DLP) Engineer position at Ender-IT?
Data Loss Prevention (DLP) Engineer
Charlotte, NC
Duration 12 Months
This resource is needed to support the Data Loss Prevention (DLP) Program enterprise-wide focused on DLP monitoring and DLP policy management. This teams is responsible for identifying DLP gaps and recommending policy tuning. This role will also include monitoring, analyzing, reviewing, and reporting DLP key controls.
Must Haves :
6 years implementing Data Loss Prevention (DLP)
3 years’ experience in DLP policy creation, tuning, and testing
At least 1 year experience with SIEM (Security Information and Event Management) tools
Strong experience in policy management (example : tuning of policies and false positives and creating new policies based on requirements and business demands)
Hands on experience with internal audits and evidence preparation and gathering
Knowledge on industry cybersecurity standard frameworks (e.g. NIST)
Experience with creating new DLP / Cloud Policies as per use case
Experience working with cloud security and cloud access security broker (CASB) and Symantec CloudSoc
Experience working on Microsoft purview
Knowledge and understanding of cloud computing and Office 365
Strong hands-on skill with MS Excel, Power point
Excellent communication and documentation skills with good attention to detail – must have the ability to present reports to and interact with senior leaders
Desired Qualifications :
Industry recognized certifications like CISM, CISSP, ITIL or any other Security related certifications
Knowledge of Security Configuration for various platforms / servers
Understanding of networking concepts like ICMP, DNS, TCP / IP, DHCP, traceroute
Understanding of OWASP and Vulnerability management
Day to Day :
Identify security risks to the organization and ensure that appropriate data security procedures and products are implemented
Analyze event / alert patterns to properly interpret and prioritize threats with available DLP tools and other devices
Identify trends and derive requirements aimed at improving and enhancing existing data loss prevention and detection policies
Enhance reporting, workflow, change or problem management
Investigate and recommend appropriate corrective actions for data security incidents
Document and present key findings, progress, and hurdles to leadership on regular basis
Influence stakeholders to prioritize and execute risk management initiatives and drive remediation of process and technology gaps
Communicate security issues to a wide variety of internal key stakeholders to include technical teams, executives, and risk groups
Integrate industry standard frameworks on cyber security platform services catering to Infrastructure security (ex : NIST)
