Data Security Analyst needed for a contract opportunity with Yoh's client located in Sterling, VirginiaThe Big Picture - Top Skills You Should Possess Strong Emphasis on Data Privacy/Data Protection experience - primary focus of job duties. Strong written & Oral communication skills a must Must be adaptive to working with a range of Depts. & Divisions Experience in Media/Entertainment a plus Bachelor's degree from an accredited university in business or IT security related discipline 3+ years of progressive experience with increasing responsibilities within Information Security Dept. (eg, Cyber SecOps, Security Architecture & Engineering, and/or Data Security/Forensic Analysis) An In-depth understanding of privacy compliance programs such as General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Payment Card Industry Data Security Standard (PCI-DSS), etc. Strong working knowledge and experience with data security compliance, control design, and processes Expert-level knowledge of data security and privacy enhancing technologies and tools 2+ years of professional experience, supporting Cybersecurity Operation program(s) using security solutions such as enterprise data loss prevention tools, data encryption technologies, SIEM, EDR, etc. Must have a strong foundation of Network and Security skills, fundamental knowledge of Windows, Linux operating systems, networking protocols and network traffic analysis, etc. Independent tasking and project completion with little supervision is a must\ Excellent analytical and problem-solving skills as well as interpersonal skills to interact with users, team members and senior management Investigates, interprets, and responds to technical and/or complex IT security data Demonstrated ability to work within matrixed resources in a team environment. Possesses strong organizational, time management and diplomacy skills Working knowledge and experience in creating policies and technical documents (SOPs) as necessary What You Will Be Doing Strong Emphasis on Data Privacy/Data Protection experience - primary focus of job duties. Strong written & Oral communication skills a must Must be adaptive to working with a range of Depts. & Divisions Experience in Media/Entertainment a plus The Data Security Analyst is a technology and process focused security professional with an emphasis in information security, data discovery, data classification, data security/privacy compliance and remediation. The Analyst will review, assess, recommend and implement policy and technical controls to ensure the Discovery's Data Security program is effective. Key Areas of Responsibility Support data security initiatives across both InfoSec Department and Privacy Office Respond to day-to-day requests from Data Security, Information Security Team, and the CISO such as advising on enterprise-wide initiatives Design, implement, and support GDPR/CCPA compliance and data security controls for Global Monitor and analyze the results, trends, patterns, and events from Data Security and Privacy Compliance Tools (eg, SAS, OneTrust, BigID, etc.) in addition to other tools (eg, Splunk/QRadar) to enforce Data Privacy and Security requirements Proactively recognizes potential data security and compliance issues through reviews and analyses Develop and maintain Data Flow Diagrams for new and critical business and IT processes and services Perform periodic Data Discovery Scan and mapping for Critical Discovery Data (eg, PCI, GDPR/CCPA, etc.) and work with data owners to identify gaps and propose solutions. Develop and implement data security standard operating procedure (SOP) and enforce requirements. Provide data security requirements and guidance on secure software development and deployment Evaluate, recommend, and implement data security solutions through open-source and COTS tools Coordinate with business and IT teams, as a SME/InfoSec liaison, supporting data security initiatives Recommend, install, manage, and maintain (eg, policy, rules, and tuning) Data Security/Privacy Tools (ie, PET) when deployed and as appropriate Assist with implementation of counter-measures or mitigating data security controls as necessary What You Need To Bring To The Table Bachelor's degree from an accredited university in business or IT security related discipline 3+ years of progressive experience with increasing responsibilities within Information Security Dept. (eg, Cyber SecOps, Security Architecture & Engineering, and/or Data Security/Forensic Analysis) An In-depth understanding of privacy compliance programs such as General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Payment Card Industry Data Security Standard (PCI-DSS), etc. Strong working knowledge and experience with data security compliance, control design, and processes Expert-level knowledge of data security and privacy enhancing technologies and tools 2+ years of professional experience, supporting Cybersecurity Operation program(s) using security solutions such as enterprise data loss prevention tools, data encryption technologies, SIEM, EDR, etc. Must have a strong foundation of Network and Security skills, fundamental knowledge of Windows, Linux operating systems, networking protocols and network traffic analysis, etc. Independent tasking and project completion with little supervision is a must\ Excellent analytical and problem-solving skills as well as interpersonal skills to interact with users, team members and senior management Investigates, interprets, and responds to technical and/or complex IT security data Demonstrated ability to work within matrixed resources in a team environment. Possesses strong organizational, time management and diplomacy skills Working knowledge and experience in creating policies and technical documents (SOPs) as necessary Preferred Qualifications Desirable certifications include CIPP (US/E), CIPT, CIPM, CISSP, GCFE/GCFA, GCIH, CEH, OSCP, CHFI 2+ years of data security or security architecture and engineering experience 1+ years of security experience with cloud security environments Working knowledge with digital forensic tools such as Encase, SIFT Workstation, etc. Working knowledge and experience in leading and performing data security, data privacy discussions, reviews, and IT/security audits Working knowledge and experience in developing and reporting performance and risk metrics (eg, KPIs/KRIs - Status Reporting and Dashboard for senior management) If This Sounds Like You, Apply Now! Job Location:Please apply directly to this job, or for more information, Contact: Patty Shofner email to patty.shofner@yoh.com or call me at 314-275-1221Yoh makes finding and applying for jobs simple. Partner with Yoh to find the right opportunities across multiple industries in the US and UK. Find out more here!Yoh, a Day & Zimmermann company, is an Equal Opportunity Employer, M/F/D/V.#ESMSC