- Bachelor's degree in computer science, information security or equivalent .
- 5+ years of experience in managing DLP programs and policies.
- Certifications such as CISSP, CISA, or CEH
- Knowledge of DLP best practices and standards.
- Experience with Microsoft 365 applications and enforcements of DLP actions (including application notifications as well as actions based on policy definitions).
- Experience with creating DLP policies and access controls in Microsoft Purview, Microsoft InTune, Trellix / SkyHigh SWG or similar technologies, including adaptive policies that evaluate the risk in the context of user actions.
- Understanding of SEIMs and strong experience to query event data in Event Hub as well as through query languages based on regular expressions.
- Experience with data classification and labeling tools and techniques.
- Experience with adaptive policies and user risk management.
- Understanding of the financial services industry and the GLBA requirements.
- Excellent communication and presentation skills.
- Strong analytical and problem-solving skills.
- Implement, manage, and maintain the DLP program and policies, ensuring alignment with broader cybersecurity objectives and compliance with external audits and regulations.
- Conduct DLP risk assessments and audits, reporting findings to relevant stakeholders and recommending enhancements to the DLP framework.
- Administer and enforce DLP policies through the configuration and integration of tools such as Microsoft Purview and Microsoft InTune, ensuring data across the Office tenant is classified, labeled, and protected effectively.
- Analyze and respond to DLP alerts and incidents with a proactive approach to threat hunting, incident response, and forensic analysis.
- Provide DLP training and awareness programs for employees and stakeholders, enhancing the organizational culture of security.
- Research and evaluate emerging DLP technologies and solutions, integrating innovative practices into the DLP program.
- Collaborate closely with other information security teams and business units to ensure comprehensive data protection and compliance across the organization.
- Provide operational and on-call support as required in a 24/7 environment, ensuring the reliability and effectiveness of DLP measures.
- Complete understanding and active application the Exceptional Experience Guide expectations.
- Must be able and available to work a "hybrid" schedule, per business operations requirement, as needed.
- Additional duties and responsibilities, as assigned.
Senior InfoSec Analyst - Anaheim, United States - Credit Union of Southern California
Description
Job Type
Full-time
Description
We are seeking a Senior Infosec Analyst to join our team and help safeguard our Members' data from unauthorized access, misuse, and loss. This role will be responsible for the administration of our data loss prevention (DLP) program and ensuring our compliance with the Gramm-Leach-Bliley Act (GLBA) and other relevant regulations.
This analyst will employ the latest technologies such as Microsoft Purview and Microsoft InTune to discover and classify data as well as use the Security Controls to monitor and control data access and usage including in the Office tenant, including SharePoint and OneDrive and user apps such as Teams and Outlook as well as outside through CASB and Secure Web Gateways. Additionally, there will be opportunities to design and implement adaptive policies that account for the elevated risk in context of user actions.
Business Hours
Monday - Friday 8:30AM - 5:30PM
Based upon business needs, our positions may require working flexible hours.
This is hybrid-remote position based in Anaheim Hills, CA. with the opportunity to work 1 day in-office and 4 days working remote from home.
Why Work at CU SoCal?
Besides being a part of a great team that is dedicated to building better lives for our team members and Members, we offer competitive pay, great health benefits and a culture like no other
CU SoCal is one of the fastest growing credit unions and is more than just a place to work. It's a place where people come before profit, a place where you can build a career that's more than a job, and where the work you do has meaning and purpose.
Our Culture and Values
We are a purpose driven organization. Purpose mobilizes people in a way that pursuing profits never will. Our purpose ignites passion within our team members and inspires trust from our Members. This makes a winning combination.
We are more than a place people bank. Our industry is filled with people who can count. At CU SoCal, we are people others can count on.
We work hard, play hard, and laugh along the way. We recognize that every single one of us is a valuable contributor. We have a strong culture of learning and accountability in a collaborative, team environment.
We're a team of passionate, committed professionals dedicated to the same goal: Build Better Lives Through Exceptional Member Experiences, Every Time.
Requirements
Minimum Qualifications
Pay Scale: Min $115,800 / $ / $181,000* per year
*Actual compensation will be based on geographical location, work experience, education and/or skill level.
CU SoCal is an equal opportunity employer. All decisions are based only on the individual's qualifications/ability to perform the work. The above statements are intended to describe the essential functions, nature and level or work to be performed as of the document preparation date; they are not intended to be an exhaustive list of all duties and responsibilities. CU SoCal reserves the right to modify this job description at any time, without notice.
We foster an environment and culture where ideas and decisions from all people help us grow, innovate, and fulfill our mission of Building Better Lives.