Lead Cyber Security Engineer - DLP

In this role, you will serve as a seasoned, professional responsible for executing IT security functions and maintaining systems. Your primary objective will be safeguarding sensitive data to minimize the risk of data exfiltration and misuse. Collaboration with Cyber Governance & Risk is crucial to integrate technical data protection mechanisms effectively. Additionally, you'll ensure alignment with data security best practices and organizational objectives, implementing controls to continuously monitor and enhance elements such as data classification and encryption, both at rest and in motion.

Job Responsibilities:

• Collaborate with stakeholders to develop a comprehensive data protection roadmap ensuring robust technical controls to secure client data.
• Implement defined data security requirements and specifications.
• Enhance data monitoring capabilities within a data security program to enhance visibility and protect client data from malicious activities.
• Apply cybersecurity functions, such as encryption and access control, to minimize opportunities for exploitation of client data.
• Proactively detect and prevent unauthorized access to client data.
• Improve technology to automate and enhance data security capabilities.
• Support the development and upkeep of data security technologies.
• Ensure technical controls enable adequate data security capabilities including classification, discovery, and protection of all data at rest and in transit.

Job Specific Qualifications:

• Bachelor's degree and 6 years of relevant cybersecurity experience, or 10 years of cyber experience without a degree.
• Proficiency in managing information security technologies like IDS/IPS, SIEM, DLP, data encryption, proxies, and network access control.
• Strong understanding of encryption protocols, particularly TLS 1.3.
• Familiarity with data privacy regulations like GDPR, CCPA, ISO 27001, NIST CSF, etc.
• Technical expertise in information/data/network/computer security design, administration, and assessment.
• Broad knowledge of information systems including Windows security, network security, etc.
• Ability to provide technical expertise and support in cybersecurity threat risk assessments and incident response.
• Experience following cybersecurity news and alerts to understand complex attack vectors and risks.
• Proficiency in designing process flows for security automation tools.
• Capability to review architecture design diagrams and provide risk assessments and mitigations.
• Strong independent working ability and teamwork skills.
• Excellent communication skills for both technical and non-technical audiences.

Desired Qualifications:

• ISC2 Certified Information Systems Security Professional (CISSP) or equivalent certification.
• Programming experience in Python.