Job Summary:
The Security Engineer for DLP (L-2) is the advance level of support for DLP (Protect & Prevent) in the Security Operations.
In this position, Engineer will be required to assist our project team to configure policies across multiple DLP tools in order to assist in risk mitigation and compliance.
- Install/maintain/support/diagnose network based DLP (Data Loss Prevention) platforms
- Must have hands on experience of DLP tools like Symantec, MacAfee, TrendMicro etc.
- Must be able to execute strategic and tactical direction for DLP solutions offerings
- Assess the DLP landscape, highlight gaps and work with teams to provide potential solutions and recommendation
- Strong understanding of the Data Leakage vectors and able to articulate the Data Leakage and relevant controls to protect and detect events
- Should have deployed DLP green-field projects and operation support experience
- Perform maintenance on DLP management consoles
- Act as a liaison between business partners, technical analysts, DLP case investigators, detection analysts, and third- party vendors
- Maintain/update documentation, as well as, document exceptions to standards.
- At least 3 years of experience supporting a multiple customer base systems and network environments utilizing network based DLP solutions.
- Optimize the end- to- end use of data protection tools; Ability to write (& Fine tune) DLP rules and minimize false positives
- Represent and contribute to the overall DLP solutions and methodologies
- Support data protection processes, tools and service providers.
- Provides timely and adequate response to threats/alerts, including off-hour support.
- Develop functional specifications for integrating/ adopting requirements into enterprise target state architecture or specific application
- Collaborate with business groups to help them to identify, classify, and secure high value data
- Provide feedback via periodic reports based on rule parameters; Ability to write regular expressions
- Respond by partnering with appropriate teams (e.g., Investigation Team); Review and update DLP processes
- Ability to self- direct and work independently when necessary, and clearly articulate technical concepts/ issues to both technical and non- technical peers and management
- The ability to assess security events to drive to a resolution.
- Configuring DLP Policies within the concerned Suite
- Demonstrate Understanding of architectural components
- Understanding of other DLP tools, such as O365 capabilities, a plus
- Demonstrate Understand Critical Data Types such as PII, NPI, PCI, HIPAA, etc
- Demonstrate Understanding of Mass Storage, USB, Removable Media, for example allow charge but do not allow data copy
- Excellent English communication skills mandatory
- Excellent documentation skills mandatory
- Understand reporting capabilities
Required Technical Expertise
- Process and Procedure adherence
- General network knowledge and TCP/IP Troubleshooting
- Ability to trace down an endpoint on the network, based on ticket information
- Familiarity with system log information and what it means
- Understanding of common network services (web, mail, DNS, authentication)
- Knowledge of host based firewalls, Anti-Malware, HIDS
- General Desktop OS and Server OS knowledge
- TCP/IP, Internet Routing, UNIX / LINUX & Windows NT
- Good to have industry certifications on SIEM Platform, CCNA, CEH, MCSE & Others
- Bachelor's Degree in Computer Science or equivalent required
- 2+ years- experience in IT security
- Good communication skills
- Strong level of customer service required
Didn’t find the job appropriate? Report this Job