Data Loss Prevention (DLP) Analyst

Deloitte - Hermitage, TN4.0

Full-timeEstimated: $120,000 - $140,000 a year
Deloitte Services LP includes internal support areas such as Marketing and Communications, Human Resources/Talent, Information Technology, Facilities Management, and Financial Support Services.

Data Loss Prevention (DLP) Analyst

Deloitte and Touche LLP, a leading professional services firm, invites applications from experienced professionals to join its growing Cyber Security Team. The practice includes Monitoring, Reporting and Validation, Architecture, Privacy, and Protection. Our professionals assist our business with the implementation and operation of holistic and targeted solutions needed to meet the requirements of leading practice and match up to the standards.

As a leading practice, we provide a broad array of services that allows Deloitte to better measure and manage risk and control while enhancing the reliability of systems and processes across the enterprise. Our experience in Data Loss Prevention lies in handling data-at-rest, data-in-use and data-in-motion including Data Discovery, Data Classification, Information Rights Management, Data Activity Monitoring, etc.

We are looking for professionals who have a passion to shield data from exfiltration. By joining Deloitte’s Cyber Security Team, you will assist in the future state of cyber data protection solutions at Deloitte.

Work you’ll do

In your role as a Data Loss Prevention Analyst, you will act as a First Level Reviewer to DLP events and will be required to perform/assist with:
DLP infrastructure administration and incident management support
DLP Infrastructure Monitoring: health monitoring, availability monitoring, performance alerts & escalation, and notification
Perform Level 1 analysis of events generated by the DLP solution and follow defined process to escalate any potential incidents
Develop and follow detailed operational processes and procedures to appropriately analyze, escalate, and support remediation of incidents
Work with data protection stakeholders to understand Confidential Information (CI) protection requirements and recommend DLP policies and rulesets
Advise on ruleset optimization and tuning to reduce false positives based on patterns observed during event analysis

The Team

Information Technology Services (ITS) helps power Deloitte’s success. ITS is the engine that helps to drive Deloitte, which serves many of the world’s largest organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.

The ~2,200 professionals in ITS deliver services internally including:
Cyber security
Technology support
Technology & Infrastructure
Application development and management
Relationship management group

For more information on ITS, you can visit our dedicated recruitment page at

Cyber Security
The Cyber Security team is responsible for vigilantly protecting Deloitte and client data. The team is responsible for a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand.

Areas of focus include:
Cyber design
Risk & Compliance
Technology Risk Management
Identity & Access Management
Data Protection
Incident Response and Architecture

Data Loss Prevention tools help the implemented capabilities and technologies to better protect sensitive information by continuous monitoring of any data at risk. As infrastructure and applications become more virtualized and adaptive, new cybersecurity gaps can be created as fast as old ones have been addressed, making the prevention of data breaches more difficult than ever. By prioritizing preventative and detective defenses around highly sensitive data, security teams can help reduce data loss and risk when attackers get past network, application, and infrastructure controls.

Leveraging these principles and an understanding our risk profile, Data Protection team better protect sensitive information across the end-to-end data lifecycle, and act as an organization’s first line of defense. It takes advanced technologies to address cyber risk, but it also takes strong threat awareness and analytic capabilities, solid preparedness to respond to a crisis, and strong leadership and governance processes to keep things focused on what really matters to the organization