Description

This position will be part of the Information Protection team in our Company’s Cyber Fusion Center. The successful candidate will work in a role designed to protect and defend against losing our Company’s sensitive information. In this position, the DLP Analyst will analyze and triage DLP and Insider Risk alerts related to protecting our Company’s intellectual property and confidential/sensitive information, including personal data. The analyst will work closely with other senior team members to help drive requirements and improvements in the program. The analyst will also play an essential role in incidents investigation designed to help improve visibility into potential gaps in the current security environment.

Key Responsibilities:

• First-level response for advanced, real-time DLP and Insider Risk alerts and events

• Triage events as per the SOP and investigate to identify false positive and true positive events

• Quickly and accurately determine the level of urgency and escalate or investigate as necessary

• Responsible for supporting and sometimes leading, tactical analytic response efforts

• Perform activities necessary for immediate containment and long-term resolution of events and incidents

• Assist team in performing advanced analysis of data from different sources such as DLP, Insider Risk and Splunk and correlating it to meaningful DLP and Insider Risk events.

• Work with senior team members to identify telemetry required to support in-depth analysis and investigations when required

• Build PowerBI dashboards to generate reports around security events and metrics

• Ensure that all security events are appropriately documented/tracked to meet audit and legal requirements

• Develop Job aids in support of response processes and/or procedures

Requirements

Education Minimum Requirement:

• A Bachelor's degree in Computer Science, Information Systems or other related field and experience, preferably in a pharmaceutical, biotechnology or another regulated environment

• Equivalent experience and/or education is accepted to include Bootcamps.

Required Experience and Skills:

• Bachelor's degree in Computer Science, Engineering, or Information Systems or related field preferred; or equivalent related work experience

• Experience in cyber security, working in DLP and Insider Risk

• Investigative mindset and familiarity with analytic methodologies, including a working knowledge of common data sets required to investigate DLP and Insider Risk events

• Excellent verbal and written communications skills with strong attention to detail

• Ability to thrive in a fast-paced environment and capable of working under pressure

• Ability to maintain confidentiality while dealing with sensitive information

Preferred Experience and Skills:

• Background in DLP tools such as McAfee, Insider Risk Module or O365 Compliance module

• Background in system engineering in Windows and/or Linux.

• Experience with Python, Ruby

• Familiarity with Nuix