Cyber Security Analyst (DLP) - Remote

Artech LLC
Mclean, VA
Jan 18, 2022
Jan 22, 2022
Full Time
Job Description Responsibilities: Act as skilled technician in areas of Data Loss Prevention (DLP), Architecture, Discovery, Ruleset development, and DLP Technology testing Strive to align & deliver on (with team collaboration) the clients technical requirements for data protection directives, standards, patterns and guidelines. Contribute to defining of functional requirements and program metrics based on documented use cases and adjusted results. Provides knowledgeable insight & support around designing and implementing DLP pilots for endpoint, network, cloud and storage solutions. Support the implementation of appropriate controls around data in use (DIU), data at rest (DAR), and data in motion (DIM) cyber security framework of unstructured data within the DLP Program team. Collaborate on the technical discussions and evaluations surrounding the configuration, implementation, administration, and management of multiple data protection cyber security products and solutions. Assist in the develop of security controls framework and assessment of current directives, standards and patterns. Investigate, design and architect DLP controls as they are identified, developing backlog and gap for analysis. Proficient understanding of DLP Discovery (Varonis), Endpoint (McAfee), CASB/Network (Netskope), Microsoft Azure DLP protections (AIP/MIP), Microsoft O365 Security Center, and Cisco ESA (IronPort) Evaluate emerging technologies & risks that will define a security architectural framework with threat modeling methodology. Establish effective working relationships across various customer line of business to understand their business requirements to help execute their business strategy. Essential Functions of the Position: Design, configure, test, and pilot new DLP policies(Rulesets) within the tool to detect sensitive data exfiltration. Build processes to identify data exfiltration gaps and solutions to remediate Post DLP Rulesets development and configuration per Pillar (Storage/Endpoint/Cloud and Network). Help tune for false/positives and potentially perform IR (Incident Response) type analysis for remediation, during development, testing and production Pilot phases Work with DLP and User Behavior Analytics (UBA) products and services to develop detections and alerts around data exfiltration Create and implement use cases to detect and identify gaps in current state. Design, develop and recommend on security DLP solutions Monitor and track remediation activities to address weaknesses and issues discovered through DLP Posture reviews Able to understand and support DLP incident response processes and collaborate with internal and external support teams to drive resolution. Respond to any inquiries and provide training awareness when appropriate to peers, and customers Work with the DLP support team to identify and address monitoring gaps, weaknesses and configuration issues Be data driven in decision making through the creation of analytics reports. Good working knowledge with SQL and regex Ability to dive into analyzing big data for anomalies Help to ensure compliance and that all DLP related issues are appropriately tracked and remediated Job Requirements: Bachelor's degree in Computer Science, Information Systems, Engineering with 10 years relevant experience in Information Security 5 years' experience with DLP analysis work Possess high level of maturity, discretion and judgment Highly motivated, self-starter, goal driven, innovative, curious and open minded Good oral and written communication skills Ability to obtain public trust clearance