Product Security Senior Analyst (MS DLP)

Who we are:

Nearly all aspects of our lives involve the use of technology. It is how we work and play and do anything in between. This connectivity or use of data is built into the very fabric of our society. It is vital to human progress. Vertiv believes there is a better way to meet this accelerating demand for data — one driven by passion and innovation.

As industry experts and Architects of Continuity, we collaborate with our customers to envision and build future-ready infrastructures. We leverage our portfolio of hardware, software, analytics, and services, to ensure our customers’ vital applications run continuously, perform optimally, and scale with business needs.
 

Why Join Us?

• Meaningful and Fulfilling Work
• Inspiring and Caring Leaders
• Global Talent Center
• Recharge Your Potential
   

JOB SUMMARY 

This hands-on role will spend most of their time reviewing/triaging Data-Loss Prevention Incidents. They will gather facts and evidence through security tools, interview associates to understand anomalous behavior, and will observe, monitor, record and document known or suspected offenses. Analyst must have strong investigative mindset, good written and oral communication skills, and the ability to prioritize, document, and manage multiple Data-Loss Prevention cases/incidents. This person will be directly responsible for evaluating, administering (maintaining and configuring) and implementing effective Data-Loss Prevention technologies and services to keep security ahead of the curve.

JOB RESPONSIBILITIES:

• Reviewing/triaging Data-Loss Prevention incidents using tools such as Microsoft Purview, Defender for Endpoint, Defender for Office 365, Cloud App Security
• Develop and implement Data-Loss Prevention security standards and procedures to include documentation.
• Employ deductive reasoning and analysis to make informed decisions and conclusions that lead to detection of mishandling of Protected Data.
• Communicate with Business Units, HR, and Privacy department(s) to understand and implement DLP solutions, and to investigate/resolve potential and known violations.
• Interview relevant parties and investigate potential DLP violations as appropriate.
• Identify and applies relevant security controls to systems based on Protected Data classification.
• Triage and investigate suspected and actual Data-Loss Prevention violations and potential mishandling of Protected Data in association with the Privacy and/or and Human Resources team(s)
• Write detailed case reports, file and maintain records, manage and document cases including resolutions and outcomes.
• Make recommendations on technology optimization strategies.
• Provide hands-on integration and implementation of enterprise DLP solutions.
• Create documentation to support DLP methods, tactics, techniques, and procedures.
• Provide continuous monitoring support for information systems and applications.
• Proactively identifies, locates, and safeguards Protected Data and hunts potential avenues for Data Loss
• Maintain federal IT security policies, standards, and guidance.
• Familiarity with Exchange Online, Teams, Sharepoint, Onedrive, Entra (Azure AD)
• Powershell scripting and automation of repetitive tasks
• Provide eDiscovery for HR, internal Legal Department, and outside counsel
• Provides after hours on-call support in case of issues escalations
• Troubleshoot issues interfacing other teams including the Global Service Desk and the Network Operations Center
   

JOB RESPONSIBILITIES:

• 3+ years of experience in cyber security or as an Analyst with a demonstrated track record in deploying and managing Data Loss Prevention and Insider Threat Detection systems
• Working knowledge of secure design and administration of the following technologies: Data Loss Prevention (preferably Microsoft Purview), EDR (preferably Microsoft Defender for Endpoint), Email Encryption, Exchange, and eDiscovery
• Working knowledge of threats to cybersecurity and understanding of the tools and tactics utilized by threat actors and insider threats
• Working knowledge of Office 365, Exchange Online, Microsoft Azure, Windows.
• Apply sound IT processes, with a focus on security and best practices
• Excellent English communications skills (written and verbal) and ability to work both independently and in a group.
• Bachelor’s degree in a technically related field of study or equivalent work experience
• 4+ years of experience with network or endpoint DLP solutions
• One or more security related professional certifications
• Knowledge of common attack methodologies; common types of security vulnerabilities and principles of the Chain of Custody and non-destructive data forensics
• Experienced in coordinating searches of email, hard drives, and other potential data storage and transmission platforms
• Basic knowledge of other Microsoft 365 tools and products such as Microsoft 365 Apps, Exchange Online, Sharepoint, OneDrive, and Teams
• Experience with Microsoft Defender, Microsoft Purview, Email Encryption, DLP, RMS, Exchange Online, eDiscovery, Microsoft Cloud App Security, Powershell, audit log reviews and interpretation