Previous Job
Data Loss Prevention Analyst (Financial Services)
Ref No.: 15-02997
Location: New York, New York
Position Type:Direct Placement
Start Date: 11/12/2015

Position Description
We are looking for a talented Data Loss Prevention Analyst to join a team of Information Security experts responsible for protecting Firm, Client and Employee sensitive/confidential data. The Security Incident Response team is responsible for managing the detection and reporting of cyber and information security incidents supporting all Firm Business Units.

We are looking for an individual that is experienced in designing processes and onboarding tools in support of the Firm's Insider Threat Management Program. The ideal candidate will have experience in designing scenario based solutions (processes / procedures) that rely on Incident Management and DLP or SIEM type technologies to detect patterns of activity that require further analysis / are indicative of Insider Threats. This is very similar to traditional Threat Management Programs which leverage SIEM / DLP technologies, only in this case the focus is on managing Insider Threats.

This position will NOT require physical installation or configuration of SIEM / DLP / technologies but will instead focus on working with Engineers, SMEs, and relevant parties to develop monitoring requirements in support of the Program goals.

  • Work with the Engineering and Integration teams to understand monitoring needs and priority for onboarding
  • Work with review & response teams to estimate capacity and ongoing resource needs
  • Work closely with business, legal, and technology stakeholders to improve review and response processes
  • Assist in the periodic review of volume, analyzing rules with high volumes of false-positives/ non-incidents for further review with engineering and integration team
  • Proactively assess tools across the Security Incident Response tool suite to identify opportunities for enhanced monitoring, automation, and reportin
  • Develop implementation options in line with Incident Management best practices, Human Resources, IT Security, Engineering teams, and other Business groups is required.
Skills Required:
  • Demonstrated experience in designing and implementing technology and process solutions to reduce the potential risk of data compromise
  • Ability to understand drivers and priorities, with regard to Business, Security, and regulatory requirements
  • Ability to handle sensitive matters with discretion and maintain confidentiality
  • Ability to self-organize, prioritize activities independently, create documentation, and reporting
  • Strong verbal and written communications skills with demonstrated ability to explain technical ideas to non-technical audience
  • Ability to multi-task, with attention to detail, and prioritize as needed to accomplish goals
  • Solid knowledge of Microsoft Office Suite
  • Able to collaborate effectively with business and technology stakeholders, and manage expectations in the delivery of projects
Skills Desired:
Bachelors Degree or Equivalent Experience with Incident Management tools, such as RSA Archer Incident Management, Symantec DLP