Senior DLP Security Engineer

The Senior DLP Security Engineer will serve as the organization’s subject matter expert (SME) on Data Loss Prevention (DLP), spearheading the development and execution of a comprehensive DLP strategy. This role is essential in ensuring data protection through policy creation, implementation of preventive and detective controls, user behavior monitoring, and collaboration across various teams. The individual will also leverage SecurityDevOps practices and scripting to automate DLP processes and enhance security controls.

Additional Responsibilities

• DLP Program Development: Lead the design and implementation of a cohesive DLP strategy, including data classification, policy creation, standards, and operational best practices to safeguard sensitive information.
• Data Classification and Labeling: Develop and manage data classification schemes and collaborate with data owners to ensure data is accurately labeled according to sensitivity and regulatory requirements.
• Data Discovery and Inventory Management: Use data discovery tools to locate and catalog sensitive data across on-premises and cloud environments, maintaining a dynamic inventory of sensitive data repositories.
• Policy and Rule Configuration: Design, implement, and fine-tune DLP policies and detection rules to minimize false positives and optimize incident management.
• User Behavior Analytics (UBA): Integrate user behavior analytics with DLP tools to detect abnormal data access or potential insider threats, developing models to monitor deviations in sensitive data handling.
• Data Exfiltration Monitoring and Response: Create controls to monitor and detect data exfiltration attempts via multiple channels, working with Incident Response teams to contain and remediate potential data breaches.
• Cloud and SaaS Data Protection: Develop DLP strategies specifically for cloud services and SaaS applications to extend data visibility and control in cloud environments.
• Endpoint and Network DLP: Deploy and manage endpoint and network DLP solutions to ensure data protection on user devices and throughout network channels, such as email and web.
• Data Masking and Tokenization: Implement data masking, encryption, and tokenization techniques to protect sensitive data in non-production environments, ensuring compliance without disrupting business functions.
• Incident Analysis and Root Cause Identification: Analyze DLP incidents to determine root causes and implement preventive measures, collaborating with relevant teams to mitigate future incidents.
• Metrics and Reporting: Define DLP metrics and KPIs to evaluate the program’s effectiveness, regularly reporting findings and trends to leadership to support data security initiatives.
• Compliance Alignment and Auditing: Ensure DLP policies and controls align with industry regulations (e.g., GDPR, CCPA, HIPAA) and participate in compliance audits to assess and enhance the DLP program.
• Third-party and Supply Chain Data Protection: Extend DLP controls to cover third-party and supply chain interactions, working with vendor management and legal teams to ensure sensitive data remains protected when shared externally.
• Automation & Scripting: Leverage scripting languages (e.g., Python, PowerShell) to automate DLP processes, enhance security monitoring, and support the integration of DLP controls within existing systems.
• Security Integration: Utilize SecurityDevOps practices to facilitate the deployment and maintenance of DLP and other security controls within CI/CD pipelines and automated workflows.
• Collaboration with DevOps Teams: Partner with DevOps and engineering teams to ensure DLP requirements are embedded within development and deployment processes.
• Security Controls Optimization: Identify and implement automation opportunities to improve the DLP program’s efficiency in detecting and responding to security incidents.

Experience

• DLP Expertise: Strong understanding of DLP technologies, data classification, exfiltration monitoring, and endpoint/network DLP, particularly with Microsoft Purview and Varonis.
• Policy Development: Experience in creating and managing data protection policies and governance processes, with the ability to adapt to regulatory requirements.
• SecurityDevOps Knowledge: Familiarity with SecurityDevOps principles, CI/CD, and automation within DLP and security processes.
• Scripting Proficiency: Proficient in scripting languages (e.g., Python, PowerShell) to support DLP automation.
• Security Architecture: Ability to create reference security architectures and frameworks that incorporate DLP, SecurityDevOps, and automation.
• Communication and Training: Excellent communication skills to present DLP and security concepts and conduct training on data handling and security requirements.
• Cross-functional Collaboration: Proven ability to build relationships and secure buy-in across multiple teams to advance data protection initiatives.

Preferred Experience

• Security Certifications: Recognized certifications (e.g., CISSP, CCSP, CISM, GSEC) focused on data protection, SecurityDevOps, or cloud security.
• DLP & Security Engineering Experience: 7+ years’ experience as a Security Engineer with 2+ years of demonstrated experience working with DLP technologies; one year of demonstrated experience with SecurityDevOps.
• Project Leadership: Experience leading DLP or security automation projects from design through deployment, with an emphasis on collaboration and cross-functional engagement.

Location Requirements
Atlanta, GA or Gainesville, FL