Job Description: Data Loss Prevention (DLP) Engineer
Data loss prevention (DLP) systems detect potential data breach incidents in a timely manner and prevent them by monitoring data while in-use, in-transit, and at-rest. DLP systems can be both appliance-based and host-based with components for network monitoring, discovery scanning, and perimeter protection. Paymentus is seeking a Data Loss Prevention (DLP) Engineer with a foundational understanding of Privileged Access Management (PAM) and Identity and Access Management (IAM) to join our growing Cyber Security team. In this role, you will be responsible for designing, implementing, monitoring, reacting, and reporting on information security events within the DLP scope. Additionally, the role includes managing security tools and IT systems with a special focus on DLP enablement.
RESPONSIBILITIES: Perform data review and analysis to identify and fingerprint information to be protected.
Develop policies to monitor protected data while in-use, in-transit, and at-rest with response rules to prevent leakage of protected information assets.
Design and implement data loss prevention solutions for corporate and production systems.
Develop workflows for handling incidents and alerts related to protected data policy infringements.
Communicate with internal and external resources to ensure DLP policies meet compliance and security requirements.
Resolve problems related to DLP solutions implementation, performance, reliability, and availability.
Perform DLP solutions administration and maintenance and keep DLP documentation up-to-date.
Configure and tune DLP systems, policies, and response rules.
Ensure that Service Level Agreements (SLAs) are met.
Provide assessment/audit support during internal or external security audits, including but not limited to PCI-DSS and SOC2 audits.
Serve as a subject matter expert (SME) for other teams in DLP-related questions.
Assist in providing best practice solutions for data protection.
Assist in developing policies and standards for data loss prevention.
Report on DLP-related issues, propose process and technical improvements.
Support the Security Operations Center (SOC) by leading efforts requiring data loss prevention expertise.
Provide advice, training, and technical support to all system stakeholders.
TECHNICAL QUALIFICATIONS: 5+ years of related work experience.
Experience designing, implementing, and operating Data Loss Prevention solutions for SaaS and hybrid cloud environments.
Basic understanding of PAM and IAM concepts.
Experience with scripting and/or development tools used with application integration into identity and access management and SIEM systems.
Nice to have: Experience in implementing DLP solutions for cloud email solutions such as GSuite or Office365.
Knowledge of PCI DSS, HIPAA, GDPR regulations.
Knowledge of core Information Security concepts related to Governance, Risk, and Compliance.
Current information security certifications such as CISM, CRISC, or CISSP.
SOFT SKILLS: Has a good understanding of security concepts and interested in further developing security skills.
Has an automation mindset.
Capable of working in a fast-paced environment, adapting to changing priorities.
Self-starter with an appreciation for technical challenges and complex problems.
Focused and detail-oriented.
Able to work independently and as part of a multidiscipline team.
Has excellent written and verbal communication skills to articulate problems and solutions to both technical and non-technical audiences.
Possesses superior troubleshooting and analytical skills to perform root cause analysis and suggest out-of-the-box solutions.
Uses a proactive approach to prevent issues from re-occurring.
#J-18808-Ljbffr