Data Security Analyst

Our client, a leading Financial institution is seeking a highly skilled Data Loss Prevention (DLP) Specialist with proven Cloud Access Security Broker (CASB) expertise to join our cybersecurity team. The ideal candidate will play a critical role in protecting sensitive financial data and ensuring compliance with regulatory requirements. Additional experience with Imperva Cloud-Native Application Protection Platform (CNAPP), Cloud Security Posture Management (CSPM) tools such as Cloudflare and F5 is a plus.

If you have a strong background in cloud security, data protection, and compliance, and are passionate about mitigating data loss risks in a financial institution, we encourage you to apply.

Position: Data Loss Prevention (DLP) Specialist

Duration: 6 Months Contract to Hire

Location: Remote

Time zone & hours of work: US Mountain Time Zone

Key Responsibilities

• Implement, configure, and manage Data Loss Prevention (DLP) solutions to safeguard sensitive financial data across on-premises and cloud environments.
• Maintain and make recommendations to improve the deployment of Cloud Access Security Broker (CASB) Netskope solution to monitor and control cloud application usage, ensuring secure data access.
• Develop DLP policies, rules, and alerts to detect and prevent unauthorized data movement.
• Collaborate with compliance teams to align DLP and CASB policies with financial regulations such as PCI-DSS.
• Investigate and respond to DLP incidents, working closely with security operations teams to remediate risks.
• Perform risk assessments on cloud environments to identify vulnerabilities and implement security best practices.
• Leverage Cloud Security Posture Management (CSPM) tools such as Cloudflare and F5 to enhance cloud security compliance.
• Research and make recommendations for various security platforms and tools as needed.
• Utilize Imperva CNAPP for advanced threat detection, application security, and API protection.
• Provide technical guidance and support for security awareness training and data protection best practices.
• Generate reports and present findings to cybersecurity leadership, auditors, and stakeholders.

Required Qualifications & Experience

• Minimum 3 years of experience in cybersecurity, focusing on DLP, CASB, and cloud security.
• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (equivalent experience may be considered).
• Proven hands-on experience with DLP technologies (e.g., Microsoft Purview, Symantec DLP, Forcepoint DLP, McAfee/Trellix DLP).
• Expertise in Cloud Access Security Broker (CASB) solutions (e.g., Microsoft Defender for Cloud Apps, Netskope, McAfee/Trellix CASB, Palo Alto Prisma Cloud).
• Strong knowledge of cloud security architectures, risk assessment methodologies, and compliance frameworks.
• Experience with SIEM tools for monitoring and investigating security incidents.
• Familiarity with Zero Trust security principles and Identity & Access Management (IAM) controls.

Preferred and Bonus Skills

• Hands-on experience with Imperva Cloud-Native Application Protection Platform (CNAPP).
• Familiarity with Cloud Security Posture Management (CSPM) tools such as Cloudflare, F5, or Prisma Cloud.
• Knowledge of encryption technologies, endpoint security, and network security tools.
• Experience working within financial institutions and understanding regulatory security requirements.
• Relevant cybersecurity certifications such as:
• Certified Information Systems Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)
• GIAC Cloud Security Automation (GCSA)
• Microsoft Certified: Security, Compliance, and Identity Fundamentals
• AWS/Azure Security Certifications

Soft Skills & Competencies

• Strong problem-solving and analytical skills with a proactive security mindset.
• Excellent communication and collaboration skills, with the ability to work across technical and non-technical teams.
• Ability to prioritize tasks and manage security incidents in a fast-paced environment.
• A team player with a commitment to continuous learning and improvement in cybersecurity.