Sr. Data Security Engineer

SailPoint’s Cybersecurity organization is seeking a Sr. Data Security Engineer with a passion for cybersecurity and protecting the organization. The successful candidate will lead our data security initiatives on an existing team of highly skilled security engineers who are charged with keeping our enterprise secure.

We’re seeking a skilled data security engineer with proven technical capabilities who is highly driven, collaborative brings diversity of thought and delivers quality results.  Our new engineer will embrace the opportunity to play a key role as we continually improve our data security capabilities over time. 

This is a challenging and impactful role where our new data security engineer will have an opportunity to work with a high functioning team of both emerging and established talent.  They’ll have the opportunity to shape our future of data security through process and technology implementation, optimization, and maturation of our existing activities.  They’ll be comfortable with the 4 I’s at SailPoint (individual, Impact, Innovation, and Integrity) even if they’re new to the concept.  They will embrace new challenges and by being their authentic self will be a positive contributor to an already positive work culture and environment.

This role reports directly to the Senior Manager of Architecture & Engineering is remote.

Responsibilities

• Write and update DLP Polices to prevent Data Leakage of sensitive data (PII, PHI, PCI), sensitive files, and corporate Intellectual Property "IP".

• Mature a data protection strategy including implementation and maturation of a data loss protection solution.

• Collaborate with privacy, legal and dependent parties to ensure alignment of data classification and record series.

• Mitigate risks related to data leakage/data loss to protect exposure and loss of confidential information across SailPoint.

• Define data retention policies, standards, and procedures with privacy, legal and dependent parties.

• Collaborate with team members to help shape requirements.

• Drive efficiencies in data collection and transformation through automation.

• Ensure the security of data in transit.

• Participate in data governance implementation and strategy.

• Support multiple teams’ data strategies and needs, coordinating with each team to ensure needs are met.

• Represent data security best practices in departmental and architecture discussions.

• Provide ongoing, transparent communication with a focus on expectations fostering trust with internal stakeholders and external partners.

Requirements

• 5+ years of data protection experience in an enterprise environment

• Experience writing security policies.

• Demonstrated experience leading and executing a data security strategy within a multi cloud environment.

• Experience in risk management & data classification.

• Experience securing data with data encryption.

• Strong conceptual, strategic thinking, problem-solving, technical, and analytical skills.

• Experience with the following concepts: data in motion, data at rest, data at the endpoint.

• Knowledge of system-level security in Windows, Unix & Wi-Fi environments.

• Very flexible attitude with the ability to balance security vs the needs of the business.

• Experience with security incident response.

• Excellent written and oral communications skills with demonstrated commitment to producing high quality documentation.

• Professional demeanor and strong work ethic and uncompromising integrity

• Knowledge of Windows/Linux OS.

• Experience of Regex creation.

Preferred

• General knowledge of infrastructure (LDAP, Group Policy, Kerberos, Active Directory, etc.) and networking (routing, firewalls, OSI Model, packet trace and analysis, etc.).Experience with SIEM systems and analysis of security logs and event correlation.

• Highly active observer of industry security trends and threats – remains up to date on current security issues.

• Knowledge of industry security frameworks and regulations such as NIST CSF, PCI DSS, SSAE16 SOC2, ISO27001 and FIPS 140-2/3.

• A preferred knowledge of cloud security technologies such as CASB.

• Good interpersonal skills like being a great teammate and effective collaborator with many different types of audiences.

• Independent problem-solving and self-directing abilities.

• Ambitious and flexible with high motivation.

• Ability to multitask and handle multiple projects.

• Ability to practice tolerance and professionalism in times of high stress.

• Strong presentation and writing skills.

SailPoint is an equal opportunity employer and we welcome everyone to our team.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.