DLP Security Analyst

The Information Security Analyst I position is part of the Global Information Security organization within ITSS Technical Services. The position will combine security and project management. You will have a global responsibility for developing and sustaining all Information Security Data Loss Prevention Governance services and activities

You will have an opportunity to grow and develop within Information Security area that is considered to be one of the most attractive IT specialties today.

You will take an active role in scoped applications processes support as well as having a chance to lead ongoing projects and enhancements influencing the corporate environment and expanding your business acumen

• Assist the management and improvement of data/information classification framework.
• Provide consulting on Data Loss Prevention related rules, policies, and procedures.
• Partner with Data Champions to research, create and provide recommendations for SLAs, OLAs, and metrics related to new Data Loss Prevention processes and services.
• Manage key initiatives related to Data Loss Prevention within Information Security to assure accountability, on-time performance, and execution within scope.
• Provide IS Data Loss Prevention consulting on major IT and business projects, acquisitions, and divestitures.
• Monitor the Data Loss Prevention (DLP) alerts in order to consistently enforce information governance and compliance policies
• Escalate high risk alerts to appropriate personnel
• Monitor, review and provide recommendations for updates to DLP policies
• Work closely with business units on classification, remediation of events
• Primary contact for teammate retraining and updates of DLP related training material
• Familiar with regulatory requirements (HIPAA, PCI, SOX, etc.)
• Responsible for working with Global locations to ensure that local regulations are maintained
• Act as a central point of contact for DLP related audits
• Assist with review of first/second level incident response support in regards to review of DLP events and analysis during and after a security incident
• Prepare metrics and reporting
• Provide and obtain information in order to build consensus regarding policy application and interpretation and adjust accordingly
• Cover miscellaneous duties as assigned based on qualifications
• Ensuring Enterprise visibility and common global use of all applicable IS technologies and services.
• Providing standardized, scalable yet adaptable IS solutions that meet varying business/facility requirements.

• Bachelor's Degree in Information Technology or a related discipline or equivalent work experience
• 7+ years of IT work experience
• 4+ years IT business analysis and design experience with exposure to customers.
• Proven leadership skills with the ability to manage conflict, deal with ambiguity, negotiate and make timely decisions
• An advanced understanding and practical application experience of IS and security related technologies and services.
• Excellent communication skills with demonstrated ability to write clear, concise business communication for multiple levels (management, technical, and user).
• Experience in prioritizing and responding to real-time security alerts.
• Basic understanding of Data Protection and Privacy Regulations e.g. GDPR, GLBA, etc.
• Strong Word, Excel, PowerPoint, and Visio skills • Bachelor's degree
• Security Certification desired: CISSP, CISM, GIAC or CISA