Enterprise Security Analyst II protecting data integrity and implementing security policies at Pekin Insurance. Involves risk assessments and compliance activities in a hybrid work environment.
About the role
- Senior Information Security Analyst focused on Data Loss Prevention strategies for protecting organizational data integrity and confidentiality. Collaborating across teams to enhance data security practices within Canada Life.
Responsibilities
- Design, implement, and manage the end-to-end DLP control to protect sensitive data across endpoints, cloud, email, network, and mobile environments according to identified requirements, developed milestones, and approved program.
- Develop and expand DLP policies, rules, and controls to align with evolving business needs, regulatory requirements, and industry best practices.
- Continuously improve and optimize DLP processes to enhance accuracy, reduce false positives, and improve efficiency.
- Support the expansion of DLP capabilities into emerging technologies, and egress channels.
- Follow the DLP incident response process, collaborating with all stakeholders (i.e., HR, Privacy, and Business Units) to investigate, contain, and remediate data loss incidents.
- Develop and maintain DLP incident playbooks and ensure timely response to alerts.
- Provide detailed analysis and reporting on data loss incidents, root causes, and corrective measures.
- Conduct post-incident reviews and recommend improvements to prevent future incidents.
- Establish, enforce, and regularly review DLP policies, standards, and guidelines to ensure comprehensive coverage of sensitive data across the organization.
- Collaborate with Legal, Compliance, Risk, and other departments to ensure DLP policies align with regulatory requirements (e.g., GDPR, PIPEDA, PCI-DSS, HIPAA) and industry frameworks.
- Define, track, and report on key performance indicators (KPIs) and other DLP metrics to measure control effectiveness and risk posture.
- Develop and deliver DLP awareness and training programs to educate employees on the importance of data protection, acceptable use policies, and secure data handling practices.
- Evaluate and implement new DLP technologies, tools, and enhancements to strengthen data protection capabilities.
- Regularly assess the effectiveness of DLP controls through testing, audits, and continuous monitoring. Report identified DLP gaps and drive initiatives to close them.
Requirements
- Bachelor’s degree from an accredited college or university or equivalent experience.
- Minimum five years’ experience as an information technology professional with at least three of those in information security demonstrating the accountabilities as listed above.
- Deep knowledge of Data Loss Prevention (DLP) technologies, frameworks, and platforms—particularly Microsoft Purview , Microsoft Defender for Cloud Apps , and Microsoft Defender for Endpoint .
- Proven experience implementing and managing solutions for Data Loss Prevention , Insider Risk Management , Data Security Posture Management , and Conditional Access .
- Strong understanding of data classification, encryption, regulatory requirements, and standards.
- Proven experience managing DLP incidents, governance forums, and program expansion initiatives.
- Familiarity with cybersecurity frameworks such as NIST, ISO 27001, and CIS Controls.
- Experience collaborating with cross-functional teams and senior stakeholders.
- Exceptional analytical, problem-solving, and investigative skills.
- Holds at least one information security certification or actively working towards at least one security certification (e.g. CISSP, CISM).
Benefits
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development opportunities
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Cybersecurity Analyst leading CMMC compliance efforts for GM Defense and U.S. Government programs. Collaborating with multiple teams to ensure adherence to cybersecurity standards.
Cybersecurity Analyst role at Fidelity Investments, assisting with client security inquiries and managing cybersecurity program communications. Requires a bachelor’s degree and relevant experience.
External Footprint Security Analyst safeguarding public - facing digital assets with expert cybersecurity skills at HID Global. Design and implement proactive strategies for identifying and mitigating vulnerabilities across multiple locations.
Sr. Information Security Analyst managing information security strategy and execution at Otter Products in Fort Collins, CO. Leading initiatives for enterprise security programs and incident response.
Technical reference in Application & API Security for Vivo Vita. Managing Akamai platform and incident response in a collaborative work environment.
Entry level Information Security Analyst working on assignments to monitor systems for unusual activity. Contributing to technology supporting the mission of the Church.
Security Analyst supporting delivery of managed security services for higher education clients at Asiera. Responsibilities include incident management, threat hunting, and collaboration with multiple teams.
Senior Cybersecurity Analyst designing and improving information security processes at Localiza&Co. Collaborating with various teams to ensure governance and data safety.
Associate Cybersecurity Analyst executing the Cybersecurity Program at GM Financial, managing risks and ensuring security for company assets.