- 5–7+ years of experience in security engineering, data protection, or insider threat operations within enterprise environments.
- Hands-on experience implementing and managing DLP and insider threat monitoring platforms (endpoint, email, network, and cloud-based).
- Deep understanding of data classification, handling, and access control models across enterprise ecosystems.
- Experience analyzing user activity and data movement to detect anomalous or risky behavior.
- Proficiency in integrating DLP and insider threat technologies with SIEM, SOAR, and cloud platforms for enhanced visibility and automation.
- Strong knowledge of endpoint, network, and cloud DLP technologies and best practices for data security enforcement.
- Experience in policy tuning, rule creation, and reducing false positives within DLP and insider threat systems.
- Familiarity with scripting and automation (Python, PowerShell, or equivalent) for policy management and workflow optimization.
- Working knowledge of privacy and regulatory frameworks including GDPR, CCPA, and ISO 27001.
- Excellent analytical, investigative, and communication skills, with the ability to collaborate across global, cross-functional teams.
Preferred
- Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or a related field (or equivalent practical experience).
- Certifications such as GCITP, CCITP, CDPSE, or equivalent credentials in data protection or insider threat management.
- Experience with insider threat frameworks and behavioral analytics tools supporting large enterprise environments.
- Familiarity with CASB, DLP-as-a-Service, and cloud security solutions (Microsoft 365, Google Workspace, or equivalent).
- Knowledge of the MITRE ATT&CK framework for insider threat and data exfiltration scenarios.
- Experience conducting forensic investigations related to insider threats, data leakage, or intellectual property protection.
Shift Timing
10 00 – 18 00 PST (22 30 – 06 30 IST), Monday through Friday, with emergency on-call responsibilities as required.