Product Security Senior Analyst (MS DLP)
Philippines
Who we are:
Nearly all aspects of our lives involve the use of technology. It is how we work and play and do anything in between. This connectivity or use of data is built into the very fabric of our society. It is vital to human progress. Vertiv believes there is a better way to meet this accelerating demand for data — one driven by passion and innovation.
As industry experts and Architects of Continuity, we collaborate with our customers to envision and build future-ready infrastructures. We leverage our portfolio of hardware, software, analytics, and services, to ensure our customers’ vital applications run continuously, perform optimally, and scale with business needs.
Why Join Us?
- Meaningful and Fulfilling Work
- Inspiring and Caring Leaders
- Global Talent Center
- Recharge Your Potential
JOB SUMMARY
This hands-on role will spend most of their time reviewing/triaging Data-Loss Prevention Incidents. They will gather facts and evidence through security tools, interview associates to understand anomalous behavior, and will observe, monitor, record and document known or suspected offenses. Analyst must have strong investigative mindset, good written and oral communication skills, and the ability to prioritize, document, and manage multiple Data-Loss Prevention cases/incidents. This person will be directly responsible for evaluating, administering (maintaining and configuring) and implementing effective Data-Loss Prevention technologies and services to keep security ahead of the curve.
JOB RESPONSIBILITIES:
- Reviewing/triaging Data-Loss Prevention incidents using tools such as Microsoft Purview, Defender for Endpoint, Defender for Office 365, Cloud App Security
- Develop and implement Data-Loss Prevention security standards and procedures to include documentation.
- Employ deductive reasoning and analysis to make informed decisions and conclusions that lead to detection of mishandling of Protected Data.
- Communicate with Business Units, HR, and Privacy department(s) to understand and implement DLP solutions, and to investigate/resolve potential and known violations.
- Interview relevant parties and investigate potential DLP violations as appropriate.
- Identify and applies relevant security controls to systems based on Protected Data classification.
- Triage and investigate suspected and actual Data-Loss Prevention violations and potential mishandling of Protected Data in association with the Privacy and/or and Human Resources team(s)
- Write detailed case reports, file and maintain records, manage and document cases including resolutions and outcomes.
- Make recommendations on technology optimization strategies.
- Provide hands-on integration and implementation of enterprise DLP solutions.
- Create documentation to support DLP methods, tactics, techniques, and procedures.
- Provide continuous monitoring support for information systems and applications.
- Proactively identifies, locates, and safeguards Protected Data and hunts potential avenues for Data Loss
- Maintain federal IT security policies, standards, and guidance.
- Familiarity with Exchange Online, Teams, Sharepoint, Onedrive, Entra (Azure AD)
- Powershell scripting and automation of repetitive tasks
- Provide eDiscovery for HR, internal Legal Department, and outside counsel
- Provides after hours on-call support in case of issues escalations
- Troubleshoot issues interfacing other teams including the Global Service Desk and the Network Operations Center
JOB RESPONSIBILITIES:
- 3+ years of experience in cyber security or as an Analyst with a demonstrated track record in deploying and managing Data Loss Prevention and Insider Threat Detection systems
- Working knowledge of secure design and administration of the following technologies: Data Loss Prevention (preferably Microsoft Purview), EDR (preferably Microsoft Defender for Endpoint), Email Encryption, Exchange, and eDiscovery
- Working knowledge of threats to cybersecurity and understanding of the tools and tactics utilized by threat actors and insider threats
- Working knowledge of Office 365, Exchange Online, Microsoft Azure, Windows.
- Apply sound IT processes, with a focus on security and best practices
- Excellent English communications skills (written and verbal) and ability to work both independently and in a group.
- Bachelor’s degree in a technically related field of study or equivalent work experience
- 4+ years of experience with network or endpoint DLP solutions
- One or more security related professional certifications
- Knowledge of common attack methodologies; common types of security vulnerabilities and principles of the Chain of Custody and non-destructive data forensics
- Experienced in coordinating searches of email, hard drives, and other potential data storage and transmission platforms
- Basic knowledge of other Microsoft 365 tools and products such as Microsoft 365 Apps, Exchange Online, Sharepoint, OneDrive, and Teams
- Experience with Microsoft Defender, Microsoft Purview, Email Encryption, DLP, RMS, Exchange Online, eDiscovery, Microsoft Cloud App Security, Powershell, audit log reviews and interpretation
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Automation Azure Cloud EDR Encryption Forensics Monitoring PowerShell Privacy Product security Scripting SharePoint Threat detection Vulnerabilities Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Cloud Security Architect jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Architect jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information System Security Officer jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs