Data Loss Prevention Engineer II/III

Role Summary

Data Loss Prevention Engineer II/III responsible for implementing and managing DLP controls, responding to incidents, and collaborating with Legal and Compliance to map DLP to regulations. Requires strong communication and problem-solving skills and familiarity with data privacy regulations.

Responsibilities

• Conducting comprehensive data discovery across structured and unstructured data sources.
• Establishing and managing configurations, rules, thresholds, requirements, and policies in DLP platforms and for endpoint agents in collaboration with applicable business owners.
• Investigate DLP incidents, perform forensic analysis, and escalate critical threats tied to data movement. Tune DLP platforms to reduce false positives based on feedback from incident investigation and triage.
• Integrate DLP systems with security operations (e.g., SIEM, SOAR) to enable holistic incident response.
• Managing CASB configuration, rules, and implementation.
• Managing data analysis, data discovery, and data classification systems.
• Continuously monitor DLP platforms and develop related metrics for reporting to business leaders.
• Advise on changes in legal, regulatory, or technological environments that may require changes to business operations or minimize business risk.
• Collaborate with Compliance and Legal teams to map DLP controls to industry regulations and corporate policies.
• Perform regular audits to ensure DLP controls meet compliance requirements.
• Develop and contribute to standard work processes and playbooks in support of DLP efforts.

Qualifications

• Required: B.S. in Information Security or related field or equivalent experience.
• Required: 3-5 years of industry experience in data loss prevention or information security related roles.
• Strong understanding of data classification methodologies and tools.
• Familiarity with End-User Behavior Analytics (EUBA), Insider Risk Management, DLP, and CASB processes and tools.
• Familiarity with all layers of infrastructure (endpoint, application, storage, network, perimeter, etc.) as they relate to overall data security.
• Experience with DLP in both on-premises and cloud environments, including structured and unstructured data, databases, file servers, etc.
• Knowledge of regulatory requirements (GDPR, CCPA, etc.) related to data protection.
• Experience integrating DLP and CASB tools with SIEM and related security monitoring and alerting platforms.
• Problem solving skills and ability to work under pressure.
• Ability to multi-task.
• Ability to communicate issues to peers and management.

Skills

• Data security and privacy regulatory knowledge (GDPR, CCPA).
• Data classification and data discovery tooling.
• DLP platforms, CASB, SIEM/SOAR integrations.
• Forensic analysis and incident response.
• Strong communication and collaboration with cross-functional teams.

Education

• B.S. in Information Security or related field or equivalent experience.

Additional Requirements

• None beyond the qualifications listed.