- SANS GIAC
- Program Development
In this role you will be an IT Security Specialist with expertise in supporting large DLP platforms in a large enterprise environment. This role requires specific technology proficiencies that will include Symantec DLP Endpoint, Symantec Cloud Prevent, and other areas of integration across the Symantec DLP tool sets.
Monitor and investigate DLP alerts (data in motion, data at rest, data in use)
Coordinate and prioritize DLP alerts by severity level
Provide investigative feedback and/or recommendations for DLP policy improvement
Participates in system configuration improvements and their implementation or validation
Coordinate with our Security Operations Center to ensure that our DLP tools are optimally tuned for prevention, detection and investigation while considering end user experience
Review output and alerts from DLP systems for evidence of insider threats or attacks
Provide security-related metrics for dashboards and presentations
Primary oversight of the current Symantec DLP Endpoint and Symantec Cloud Prevent platforms.
Crosstrain on all other endpoint security platforms to gain proficiencies in those tools and platforms.
Assist in responses to internal and external compliance audits, penetration tests and vulnerability assessments.
Provide engineering capabilities for implementations of new capabilities within the DLP toolsets or supporting components.
Provide recommendations regarding direction of systems and applications to help secure access, data and assets.
Work with IT Security product vendors and service providers, to evaluate potential security offerings, including product evaluations, pilots and proof of concept installations
Leverage a wide range of security technologies including, but not limited to: logical access controls, identity and access management, security incident response, privileged access management, database and system monitoring, end user password management and single sign on systems as well as network device integration and endpoint security tooling.
Ability to understand and troubleshoot system configuration on Windows and Linux, network configurations and upgrades, user authentication, AD integration and various Cloud technologies.
Perform internal controls and information security risk assessments of existing or emerging technologies to identify inherent risk and evaluate key mitigating controls
Interpret business requirements and functional specifications to recommend security requirements
This position description identifies the responsibilities and tasks typically associated with the performance of the position. Other relevant essential functions may be required.
EDUCATION OR EQUIVALENT EXPERIENCE:
A Bachelor's degree in Computer Science, Information Security, or equivalent. Relevant combination of education and experience may be considered in lieu of degree. CISSP, CISA, GIAC, or related information security certifications are preferred. Continuous learning, as defined by the Company's learning philosophy, is required. Certification or progress toward certification is highly preferred and encouraged.
8 years IT Security experience in a large production IT environment administering and supporting multiple medium to small size applications. 5-8 years experience in Data Loss Prevention required. Experience in reviewing healthcare-related information system technical controls for adherence to CMS (Centers for Medicare and Medicaid Services), HIPAA-HITECH, HITRUST, and ISO 27002 security requirements. Experience in information security program development is highly desired
SKILLS/KNOWLEDGE/ABILITIES (SKA) REQUIRED:
Strong oral and written communication skills with ability to understand technology sufficiently to clearly communicate the complexity in simple terms for key stakeholders.
Detail oriented, with proven ability to mobilize and energize cross-functional teams to implement solutions and complete tasks.
Demonstrated success participating in complex technology projects with an emphasis on high customer satisfaction.
Demonstrated Customer service supporting the overall customer experience.
Ability to build relationships and influence all levels within an organization.
Knowledge of implementing the DLP solution for Data at Rest, Data in Motion and Data in Use cases.
Knowledge of DLP program; must possess strong technical knowledge of DLP architecture, system policies, rules, etc.
Knowledge of IT security around ID access, data protection, system\application monitoring, system and application access.
Ability to provide data analysis to identify incident trends and patterns.
Coding/Scripting experience (e.g. Python, Perl, PowerShell).
Knowledge of data classification solutions.
Knowledge of large application support and change management.
Working Knowledge of Windows and Linux.
Significant Experience with rollout of new technologies
Highly motivated, competitive, entrepreneurial and attracted to challenging opportunities.
Demonstrates the ability to work in a fast-paced environment where organizational skills are essential.
Ability to interact with technical managers and development teams to articulate requirements and processes while collaborating on design options, implementation, testing and user acceptance.
Be responsible for establishing strong working relationships across multiple entities including IT, HR, Legal, Compliance, Finance, as well as other Business and Risk Management teams.
Competent in advanced communication skills including the ability to translate technical security concepts to business-oriented audiences.
Knowledge of interfacing with multiple information technology application and infrastructure development and support areas within an enterprise.
Demonstrated ability to develop metrics, perform critical analysis and develop executive decision support content.
Work is performed both in the office and in the field with minimal hazards. Some travel may be required.
The qualifications listed above are intended to represent the minimum education, experience, skills, knowledge and ability levels associated with performing the duties and responsibilities contained in this job description.
We are an Equal Opportunity Employer. Diversity is valued, and we will not tolerate discrimination or harassment in any form. Candidates for the position stated above are hired on an "at will" basis. Nothing herein is intended to create a contract.