L3 Insider Threat Engineering Manager
Reigate, Surrey, United Kingdom
This role would suit those with an extensive history in building and managing Engineering teams, and with significant technical experience of the Microsoft Security stack with a focus on Purview DLP, IRM and Defender. This is a remote role, with flexibility to travel to any of the 3 offices as and when required (Reigate, Ipswich & London). The office base location will be Reigate.
We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. We have an exciting opening for a highly skilled and experienced Insider Threat Engineering Manager.
As part of the Cyber Defence department, this role will manage the Insider Threat engineering function and will manage a geographically and culturally diverse team of engineers to ensure the effective operation of our Insider Risk Management (IRM) and DLP (Data Loss Prevention) platform. Reporting to the Global Head of Insider Threat, the L3 Insider Threat Engineering Manager role is critical to the success of the Insider Threat and DLP capability within WTW.
The Role:
As the L3 Insider Threat Engineering Manager, the primary responsibilities will be:
- Accountability for the technical management and administration of the DLP and IRM platform.
- Lead and manage the Insider Threat Engineering team - a geographically and culturally diverse team of engineers, providing guidance, coaching and support to ensure the successful execution of their responsibilities, and the effective operation of our Insider Threat program.
- Work closely with the L1 Insider Threat Manager and Global Head of Insider Threat to develop, implement and refine strategies, rules, policies, and procedures to help prevent data loss and protect sensitive information across the organisation.
- Produce a technical roadmap that is aligned to the overall Cyber Security strategy.
- Ensure that DLP and IRM policies are fine tuned and matured to reduce the number of false positives.
- Collaborate with cross-functional teams, including IT, Cyber Security, HR, legal, and compliance, to define and enforce data protection and insider risk requirements, policies and standards.
- Conduct regular assessments of the Insider Threat Engineering function to identify areas for continuous improvement.
- Provide regular reports and updates to senior management on the performance and effectiveness of the Insider Threat Engineering team.
- Identify trends and drive requirements aimed at improving and enhancing existing DLP and IRM policies, and report this upward through the security management chain.
Secondary responsibilities:
- Be an integral part of projects that enhance insider threat and data protection policies and standards.
- Other relevant tasks as designated by the Global Head of Insider Threat.
The Requirements:
- It is essential that you have in-depth experience managing Insider Threat and DLP engineering teams in a global enterprise organization.
- A solid engineering knowledge of the Microsoft Security stack, in particular Purview DLP, IRM and Defender.
- Relevant Microsoft qualifications in Purview DLP, IRM and Defender.
- In-depth understanding of data protection laws, regulations, and compliance requirements (e.g., GDPR, CCPA, HIPAA).
- Strong analytical problem-solving skills.
- Excellent communication, leadership, and interpersonal skills, with the ability to effectively collaborate and influence stakeholders at all levels of the organization.
- Must be self-motivated and capable of independent work.
Beneficial:
- Previous experience with audits such as SOC2.
- Previous experience of deploying the Microsoft Insider Risk Management module within a global enterprise organization.
- Industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Privacy Professional (CIPP)
- Experience with CASB and UEBA
Equal Opportunity Employer
At WTW, we believe difference makes us stronger. We want our workforce to reflect the different and varied markets we operate in and to build a culture of inclusivity that makes colleagues feel welcome, valued and empowered to bring their whole selves to work every day. We are an equal opportunity employer committed to fostering an inclusive work environment throughout our organization. We embrace all types of diversity.
At WTW, we trust you to know your work and the people, tools and environment you need to be successful. The majority of our colleagues work in a” hybrid” style, with a mix of remote, in-person and in-office interactions dependent on the needs of the team, role and clients. Our flexibility is rooted in trust and “hybrid” is not a one-size-fits-all solution.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CASB CCPA CIPP CISM CISSP Compliance GDPR HIPAA Privacy Risk management Security strategy SOC 2 Strategy
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Security Consultant jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information System Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open DevSecOps-related jobs