As a member of IT Security team contributes to development of a comprehensive information security program.  Responsible for implementing and operating information security capabilities documenting security policies processes and standards.  Reporting to the Director of IT Security this position is responsible for execution of the Data Loss Prevention (DLP) program implementing monitoring and providing analytics for a CASB (Cloud Access Security Broker) and integrating the CASB solution with existing DLP capabilities.
Position Responsibilities: Serves as a subject matter expert on DLP and CASB Provides second and third-level support and analysis during and after a security incident. Monitors reports and security logs for unusual events. Provides operational support for Security Operations technologies/capabilities to include:   – DLP   – CASB Analyze cloud user traffic identify anomalous activity and specify areas to strengthen protection of cloud data and applications.  Implement technical measures or leverage existing technologies to prevent sensitive data from leaving the organization through email network traffic cloud storage/applications etc. Works closely with and provides guidance/direction to the Managed Security Service and Security Operations Center.Assist in the development / maintenance of DLP CASB and Cloud Security Strategies Policies Standards and Procedures.  This includes requirements/restrictions for Cloud application and storage use monitoring and where appropriate blocking of data leaving the environment and the ongoing tracking/monitoring of cloud access activities within the enterprise environment.Participates in security investigations and compliance reviews as assigned by management. Assist in development and deployment of DLP and CASB awareness training and communication capabilities. Responsible for operating maintaining and supporting various security tools as assigned by management. Collaborates with other security and infrastructure team members to identify and implement solutions. Works with business partners in resolving security-related infrastructure outages. Must possess expert troubleshooting skills.
Skills: 3 or more years of experience in Cyber Security and/or Security Operations. Understanding of cybersecurity frameworks including but not limited to NIST CF HITRUST CSF ISO 27001. Understanding of general security concepts including but not limited to cryptography DLP Security Operations Center Security Managed Services SEM FW Audit Cloud Security Mobile Security.
Education: BA in Computer Science or related field is required or equivalent acquired through combination of education and experience.