The CISO organization is seeking a candidate to join our Data Loss Prevention (DLP) Team. This role involves managing risk, ensuring regulatory compliance, and implementing security policies. The ideal candidate should have a technical background and a strong understanding of Data Loss Prevention and information classification. It is essential to have knowledge of DLP technologies and experience in a cloud-based environment. The role requires strong leadership skills, as well as the ability to collaborate with other teams. The candidate should also possess excellent communication skills and the ability to build relationships with stakeholders. The role includes providing support for DLP incidents, analyzing data, and maintaining metrics.
The CISO organization protects the information assets of LSEG through managing risk, deploying effective security risk framework and ensuring regulatory compliance. This role will sit within the Data Loss Prevention (DLP) Team which is part of Global Security Operations Centre.
This team is responsible for ensuring that sensitive and confidential data detection and prevention controls are appropriate and in line with LSEG security policies. It is also responsible for identifying opportunities to streamline our support processes and enhancements that can be made in our systems.
The candidate will ideally have a technical background, with understanding of Data Loss Prevention and information classification. Alongside the team, the role involves working with GSOC and other teams.
The candidate will have knowledge of the DLP technologies and capabilities used in an enterprise, and increasingly cloud based environment.
Essential Responsibilities:
- Previous experience leading teams operationally and mentoring technical associates
- Hands-on operational experience with O365, Purview, DLP security controls and tools governing data-in-motion, data-in-use, and data-at-rest, as well as knowledge of endpoint protection technology
- Ample knowledge of technology maintenance requirements for DLP solutions coupled with experience identifying threats
- Experience with DLP strategy and policy creation and maintenance
- Demonstrated ability to design holistic DLP capability leveraging multiple technologies across endpoints, web traffic, and email
- Strong written and verbal communication skills to represent capabilities to stakeholders, provide direction to DLP team members, and engage with employees on DLP escalations
- Ability to build strong relationships with business and technology stakeholders, self-motivation, personal drive and high energy are highly valuable for this position
- Desire and ability to integrate DLP capabilities into a comprehensive Insider Threat program
- Hands-on experience conducting DLP operations in the Cloud as well as desired knowledge of other solutions like UEBA,CASB etc.
- Experience utilizing SIEM/SOAR for data analytics and investigations
- Hand on troubleshooting experience for endpoint and/or AV deployment
- Facilitation of the DLP rule lifecycle processes and providing L3 support to all DLP incidents
- Provide SME support to the business from DLP perspective
- Oversees reports and analysis produced by Analysts, offering guidance where necessary and ensuring adherence to applicable Cyber Security control frameworks and polices.
- Preparation and maintenance of metrics
Qualifications/Requirements
- BS/BA degree in Computer Science/ Information Technology/ Information Security or related field or significant equivalent work experience
- Extensive hands on Data Loss Prevention experience
- Significant experience within either Risk Management or Technology. Ideally with an emphasis on Information Security, business applications, and security best practices.
- Deep understanding and experience with O365, Purview, DLP technologies (Network, Email, Endpoint, etc.) and processes.
- Strong verbal and written communication and collaboration skills
- Detail oriented, with proven ability to mobilize and energize cross-functional teams to implement solutions and complete tasks.
- Demonstrated success participating in complex technology projects with an emphasis on high customer satisfaction
- Ability to build relationships and influence all levels within an organization
- Knowledge of general network, platform, enterprise, cloud and security technologies
- Attention to detail, and an ability to spot trends, will be crucial.
Desired Characteristics:
- Certifications such as Security+, CISSP and\or CISM a plus
- Experience implementing an Insider Threat Program
- Experience with O365, Purview, DLP, CASB, UEBA solutions
- Experience working with data privacy officers, data privacy authorities, works councils, labor unions, etc. with respects to Data Loss Prevention and Data Protection Programs
- Knowledge in various DLP systems, operating systems and enterprise platforms to include: Windows, Linux/Unix, Mac OS, iOS, Android, Active Directory, .Net framework, Oracle business products, SAP, etc.