We are currently hiring for an Insider Threat Lead Engineer with DLP experience on behalf of one of our Insurance clients on a 6-month contract.
Inside IR35
Hybrid - one day a week onsite
Responsibilities:
1. Accountability for the technical management and administration of the DLP platform.
2. Lead and manage the Insider Threat Engineering team aligned to DLP - a geographically and culturally diverse team of engineers, providing guidance, coaching, and support to ensure the successful execution of their responsibilities and the effective operation of our Insider Threat program.
3. Work closely with the L1 Insider Threat Manager, the L3 Insider Threat Engineering Lead - IRM, and Global Head of Insider Threat to develop, implement, and refine strategies, rules, policies, and procedures to help prevent data loss and protect sensitive information across the organisation.
4. Produce a technical roadmap that is aligned to the overall Cyber Security strategy.
5. Ensure that DLP policies are fine-tuned and matured to reduce the number of false positives.
6. Collaborate with cross-functional teams, including IT, Cyber Security, HR, legal, and compliance, to define and enforce data protection and insider risk requirements, policies, and standards.
7. Conduct regular assessments of the Insider Threat Engineering - DLP function to identify areas for continuous improvement.
8. Provide regular reports and updates to senior management on the performance and effectiveness of the Insider Threat Engineering team.
9. Identify trends and drive requirements aimed at improving and enhancing existing DLP policies, and report this upward through the security management chain.
Experience:
1. In-depth experience managing Insider Threat and DLP engineering teams in a global enterprise organisation.
2. A solid engineering knowledge of the Microsoft Security stack, in particular Purview DLP, but also IRM and Defender.
3. Relevant Microsoft qualifications in Purview DLP, IRM, and Defender.
4. In-depth understanding of data protection laws, regulations, and compliance requirements (e.g., GDPR, CCPA, HIPAA).
5. Previous experience with audits such as SOC2 - beneficial.
6. Previous experience of deploying or managing the Microsoft IRM module within a global enterprise organisation - beneficial.
7. Industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Lead (CISM), or Certified Information Privacy Professional (CIPP) - beneficial.
8. Experience with CASB and UEBA - beneficial.
If this role is of interest or you would like to learn more, please apply now!
Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
#J-18808-Ljbffr