Information Security Analyst III- Data Protection

Primary Purpose:

As an Information Security Analyst for the Data Protection Team, you will assist in designing, implementing, and monitoring security controls to protect the organization from data leakage and assist in the development of organization-wide best practices related to Data Protection and Data Loss prevention.

Responsibilities and Duties:

• Assist with the development, analysis, monitoring, and reporting of metrics and stats related to data protection and associated controls
• Assist with the research, development, implementation, and monitoring of data loss prevention (DLP) controls for cloud applications, email, mobile devices, database protection, and other technologies
• Assess control requirements for data in transit, data at rest, and data in use
• Support Data Loss Prevention (DLP) policies, standards, and processes
• Collaborate closely with lines of business (LOB) to proactively identify and develop solutions for data masking and data sanitization
• Assist with the design and implementation of security protection standards (such as data disposition, data classification, and encryption) for systems involved in processing sensitive data
• Create and maintain comprehensive documentation
• Participate and/or lead Data remediation efforts
• Assist with data classification and data vetting activities
• Monitor and respond to data events
• Participate and/or lead data encryption projects
• Assist with Mobile Application Management (MAM) initiatives and projects, including communication to teammates
• Provide support for DLP incidents, audits, and regulatory exams as needed
• Assist with eDiscovery requests, as needed
• Participate in other assignments as direct by the manager

Knowledge and Experience:

• Strong relationship focus and desire to interface and collaborate daily with multiple LOBs and exemplify professionalism, subject matter expertise, collaboration, and responsiveness
• Bachelor's degree in related field or equivalent experience
• 2+ years experience with DLP functions and tools
• 2+ years Financial Institution or other regulated industry experience preferred
• Working knowledge of DLP alerts and remediation
• Have a working knowledge of DLP best practices and policies preferred
• Strong understanding of Microsoft Active Directory, Group Policies, and ability to troubleshoot issues preferred
• Strong self-starter with ability and motivation to take initiative and solve problems, be accountable for assignments, and operate independently
• Ability to convey risk to all levels of the organization, from management to operations and IT teams
• Strong analytical and problem-solving skills
• Strong oral and written communication skills
• Project management experience is preferred

CERTIFICATION:

• Security+, CISSP, or cloud certifications are preferred

Remote positions are intended to be filled in states within our footprint, which includes: Alabama, Arkansas, Florida, Georgia, Louisiana, Mississippi, Missouri, Tennessee, and Texas. We may hire remote workers in other states, pending approval.

#LI-remote