This site uses cookies. To find out more, see our Cookies Policy

Information Security Risk Analyst -- DLP in Detroit, MI at AF Group

Date Posted: 9/28/2018

Job Snapshot

Job Description



SUMMARY:

In this role you will be an IT Security Specialist with expertise in supporting large DLP platforms in a large enterprise environment. This role requires specific technology proficiencies that will include Symantec DLP Endpoint, Symantec Cloud Prevent, and other areas of integration across the Symantec DLP tool sets.



RESPONSIBILITIES/TASKS:

  • Monitor and investigate DLP alerts (data in motion, data at rest, data in use)
  • Coordinate and prioritize DLP alerts by severity level
  • Provide investigative feedback and/or recommendations for DLP policy improvement
  • Participates in system configuration improvements and their implementation or validation
  • Coordinate with our Security Operations Center to ensure that our DLP tools are optimally tuned for prevention, detection and investigation while considering end user experience
  • Review output and alerts from DLP systems for evidence of insider threats or attacks
  • Provide security-related metrics for dashboards and presentations
  • Primary oversight of the current Symantec DLP Endpoint and Symantec Cloud Prevent platforms.
  • Crosstrain on all other endpoint security platforms to gain proficiencies in those tools and platforms.
  • Assist in responses to internal and external compliance audits, penetration tests and vulnerability assessments.
  • Provide engineering capabilities for implementations of new capabilities within the DLP toolsets or supporting components.
  • Provide recommendations regarding direction of systems and applications to help secure access, data and assets.
  • Work with IT Security product vendors and service providers, to evaluate potential security offerings, including product evaluations, pilots and proof of concept installations
  • Leverage a wide range of security technologies including, but not limited to: logical access controls, identity and access management, security incident response, privileged access management, database and system monitoring, end user password management and single sign on systems as well as network device integration and endpoint security tooling.
  • Ability to understand and troubleshoot system configuration on Windows and Linux, network configurations and upgrades, user authentication, AD integration and various Cloud technologies.
  • Perform internal controls and information security risk assessments of existing or emerging technologies to identify inherent risk and evaluate key mitigating controls
  • Interpret business requirements and functional specifications to recommend security requirements

This position description identifies the responsibilities and tasks typically associated with the performance of the position. Other relevant essential functions may be required.