Data Loss Prevention (DLP) Ana

As a DLP Technical Analyst, you will be a critical part of the Data Protection team, focusing on the technical aspects of our Data Loss Prevention program, primarily leveraging Microsoft Purview and Sentinel. You'll be hands-on with these leading security tools to analyze alerts, tune policies, report on metrics, and contribute to the engineering and architecture of our DLP solutions. This role requires a blend of analytical skill, technical expertise, and the ability to collaborate effectively across the organization.

• Remediate DLP alerts and perform analysis for triage/escalation, with a strong focus on alerts generated by Microsoft Purview and Sentinel.
• Analyze and aggregate data loss prevention data from global sources (including Purview and Sentinel logs) to support the enhancement/tuning of existing policies and determine additional controls.
• Analyze global data loss prevention data to provide metric reporting.
• Rich exposure to develop API’s using API management tools, Project Support, training, documentation and quality.
• Ability to grasp technical aspects, willing to learn new and challenging technology, enthusiasm in accepting challenging assignments.
• Lead API strategy / roadmap initiatives while aligning the strategy to the business objectives for our clients Includes helping to establish new APIs and supporting current APIs, API development.
• Engineer and Architect current Data Loss Prevention projects, including data analytics, Alteryx workflow development, API programming, Python and Java development, working in a GITHUB environment for data storage and document management.
• Work with team to implement RESTful APIs that enable internal analytics to increase reporting speed.
• Effectively test software and deploy and integrate working software and workflows.
• Must be able to document and present architecture to stakeholders for approvals.
• Establish and manage relationships with key business customers.
• Translate customer requirements into deliverables and negotiate feasibility with available tooling/resources, particularly regarding Purview and Sentinel capabilities.
• Define, implement and support process and technology improvements related to preventing unauthorized disclosure, modification, removal or destruction of information, leveraging tools like Purview and Sentinel.

Required Skills:

• Experience with MS Purview, Defender, and Sentinel.
• Experience with Insider Threat UEBA tools.
• Experience with GCP and Tekton Pipeline.
• Experienced with data analysis and collaborative tools.
• Must have experience in Software Engineering Techniques, Software Engineering Architecture, Software Engineering Lifecycle and Data Management.
• Should be proficient in Business Analysis, Business Knowledge, Software Engineering Leadership, Architecture Knowledge and Technical Solution Design.
• Experienced with implementing APIs using RESTful or SOAP API.
• Experienced with Python, Java, and SQL development.
• Familiarity with developing machine learning algorithms.
• Strong problem solving, decision making and analytical skills.
• Ability to work independently, manage work to ensure quality, on-time delivery.
• Strong written/oral communication skills (including management collaboration).
• Highly motivated and self-directed.
• Strong Leadership skills with the ability to train and advise team members.
• Process driven mind-set; can-do, find-a-way attitude.
• Understanding of the role information security and compliance play within a global organization.
• Excellent interpersonal skills.
• Experience with Microsoft Office products (e.g. Outlook, Excel, Word, SharePoint, O365, etc.).

Preferred previous experiences:

• Experience with GRC Archer.
• Experience with MS Defender.
• Experience with Insider Threat Red Vector.
• Technical proficiency in multiple information technologies and/or Cyber security tools.
• Experience/Knowledge with computer aided design tools (e.g. AutoCAD, CATIA, or Visio).
• Experience/Knowledge with policy/rule tools (e.g. SAS).
• Candidates should be flexible / willing to work across a delivery landscape which includes and not limited to Agile Applications Development, Support and Deployment, Data Loss Prevention and Insider Threat.
• Strong understanding of security practices and risk management principles.
• Experience/Knowledge with one or more technology areas (e.g. operating systems, network, database, programming/coding, etc.).
• Knowledge of one or more security domains (Risk Management, Asset Security, Architecture & Engineering, Communication & Network, Identity & Access Management, Assessment & Testing, Operations, Software Development).
• Experience/Knowledge with one or more of the following: IT Asset Management, Active Directory, HTML.