Job Title: L2 DLP Analyst
Location: Airoli
Department: Information Security / IT Security
Reports to: Sr. Manager Information Security
Job Summary: The L2 DLP Analyst is responsible for advanced monitoring analysis and response to data loss prevention incidents. This role involves detailed investigation of escalated incidents finetuning DLP policies and collaborating with various teams to ensure the protection of sensitive data. The L2 DLP Analyst also mentors L1 analysts and provides input into the development of the organization's DLP strategy..
Key Responsibilities:
Incident Response:
- Investigate and respond to complex DLP incidents escalated by L1 analysts.
- Perform indepth analysis of DLP alerts to determine the root cause and impact of potential data loss events.
- Lead the remediation efforts by coordinating with IT legal and compliance teams as necessary.
- Document and track incidents through the incident management system ensuring all actions and decisions are recorded.
Policy Management and Optimization:
- Assist in the creation implementation and refinement of DLP policies and rules based on emerging threats and organizational changes.
- Perform regular audits and reviews of DLP policies to ensure they are effective and aligned with business requirements.
- Work closely with business units to understand data flows and identify areas where DLP policies may need adjustment.
Tool Management and Enhancement:
- Maintain and optimize DLP tools and technologies to ensure they are functioning effectively.
- Collaborate with the IT and security teams to deploy updates patches and configurations to DLP systems.
- Provide input into the selection and implementation of new DLP tools and technologies.
Training and Mentoring:
- Provide guidance and mentorship to L1 DLP analysts helping them develop their skills and knowledge.
- Conduct training sessions for new team members or other departments on DLPrelated topics.
- Share best practices and lessons learned from incidents to improve the overall effectiveness of the DLP team.
Reporting and Documentation:
- Prepare detailed reports on DLP incidents trends and overall system performance for management and stakeholders.
- Document processes procedures and lessons learned from incidents to build a knowledge base for the team.
- Ensure compliance with regulatory requirements by maintaining accurate and comprehensive records of DLP activities.
Collaboration and Communication:
- Act as a liaison between the security team and other departments such as IT legal and compliance to ensure a coordinated response to DLP incidents.
- Communicate effectively with stakeholders at various levels to explain incidents risks and the actions being taken to mitigate them.
Continuous Improvement:
- Participate in training sessions and knowledgesharing activities to stay updated on the latest DLP technologies threats and best practices.
- Contribute to the continuous improvement of DLP processes and tools by providing insights and recommendations.
Qualifications:
Education:
- Bachelor’s degree in Information Technology Cybersecurity or a related field (or equivalent experience).
Experience:
- Familiarity with DLP tools such as Ghangor DLP or GTTB.
Skills:
- Basic understanding of data protection principles and regulatory requirements (e.g. GDPR HIPAA DPDPA).
- Strong analytical and problemsolving skills.
- Excellent communication skills both written and verbal.
- Ability to work in a fastpaced highpressure environment.
- Attention to detail and a proactive approach to incident management.
Certifications:
- Relevant certifications such as CompTIA Security GIAC Certified Incident Handler (GCIH) or similar are a plus.
Work Schedule:
- May require shift work or oncall availability depending on the organization's needs.
- Location: Onsite at Airoli