Job Description Summary

Job Description

This position will be responsible for reviewing DLP events escalated by tier 1 triage support by correlating with other DLP console events and any other logs, reports, or related information to create incidents. Analysis of information will require engaging with management and other areas within information security to help determine if incidents are actionable . A certain degree of creativity and latitude is necessary along with the ability to self-manage. Part of a team that is also responsible for implementing and maintaining Information Security systems, policies and procedures to detect and/or prevent the disclosure of sensitive data.

Key Responsibilities (Top Tasks & Outcomes for Which This Position Will be Accountable)

• Responsible for reviewing Data Loss Prevention (DLP) events by correlating with other DLP console events and any other logs, reports, or related information to create incidents.
• Launch escalations/investigations for data loss incidents
• Participate in developing DLP detection policies and rules
• Engage in system maintenance and tuning planning and execution for our DLP tools
• Interface with business and legal for development of detection capabilities as well as investigations and escalations
• Assume role of subject matter expert in project work to improve BDs IS posture and decrease risk of data loss
• Manage vendors for contracted services like tier 1 analyst work, base level engineering, etc.

Educational Qualifications & Previous Experience

• Bachelor's Degree in Computer Science, Information Systems, or other related field with equivalent working experience
• 1+ year experience with Information Security curity Operations
• Knowledge of attack methods, network/endpoint forensic analysis, and malware analysis.
• Demonstrated ability to function in a collaborative environment, seeking continuous consultation with other analysts or experts.
• Prior experience performing incident triage and response
• Working knowledge of networks, Windows administration, and system configuration.
• Ability to communicate complex information, security concepts, or ideas to leadership.

Knowledge, Skills & Abilities

• Must have some incident management experience, security operations, or enterprise level data loss prevention tool experience
• Must have knowledge of Windows workstations and servers.
• Experience with desktop administration a plus
• Any experience with Data Classification or Encryption tools is a plus
• Any experience with vendor and project management is a plus
• Customer facing IT roles/experience working with people
• Experience with insider threat processes and technologies
• Experience with forensics and/or information security investigations
• Experience with project management teams
• Experience managing vendors especially with Managed Security Service Providers and/or Managed Service Providers.
• A GIAC, CISSP, or Security+ certification

Primary Work Location USA NJ - Franklin Lakes

Additional Locations

Work Shift