Mid-Level Security Design Specialist

About The Position

Requirements

• 3+ years of experience with Information Technology architecture including cloud and data architecture in a large-scale, hybrid cloud and on-prem environment
• 1+ years of experience designing and implementing security solutions for cloud-based systems, including IAM, network security, data protection, and compliance
• 1+ years of experience with data access management, user permissions, and audit logging
• 1+ years of experience working with privacy or data protection laws and regulations
• 1+ years of experience administering user system access and establishing safeguards to protect information to meet network security requirements
• Experience with configuration management of security tools for SIEM operation and incident tracking

Nice To Haves

• Bachelor's degree or higher
• Active Secret Security Clearance
• Certifications such as Certified Information System's Security Professional (CISSP), Certified Information Security Manager (CISM), or security-related vendor certifications
• Experience with enterprise-level implementations and data discovery tools (ex: BigID, Varonis, Microsoft Purview, etc.) and reporting capabilities
• Experience working with cloud-based environments and their security considerations
• Experience with scripting or automation tools for workflow optimization (e.g., Python, PowerShell)

Responsibilities

• Lead the deployment of automated data discovery tools across the enterprise, ensuring that all functionalities are effectively integrated into existing security infrastructure
• Develop and manage the product roadmap for data discovery initiatives, defining project milestones, deliverables, and timelines to ensure successful implementation
• Provide expert troubleshooting for data discovery tools, addressing technical issues and optimizing performance to ensure seamless operation
• Utilize automated tooling to monitor sensitive data and detect suspicious behavior or data anomalies, ensuring comprehensive coverage across all data repositories
• Implement real-time alerting and investigation features of security tools to identify and respond to security incidents promptly
• Analyze user access and file sharing permissions using data classification tools, ensuring that sensitive data is only accessible by authorized personnel
• Collaborate with internal teams to investigate security incidents, manage data breaches, and resolve access control issues
• Produce detailed reports and analytics using security tools to track security incidents, access logs, and user behavior and maintain accurate documentation of security configurations, findings, and actions
• Ensure that the organization remains compliant with regulations such as General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), or Payment Card Industry (PCI) Data Security Standard (DSS) by using data discovery tools to audit data access and usage
• Identify potential security weaknesses within data systems and work to remediate them using insights gained from security analysis
• Assist with educating employees on best data security practices and how to minimize potential risks associated with data sharing and access
• Work closely with cross-functional teams such as Information Technology (IT), Legal, and Compliance to ensure data protection protocols are effective and aligned with business objectives

Benefits

• health insurance
• flexible spending accounts
• health savings accounts
• retirement savings plans
• life and disability insurance programs
• paid and unpaid time away from work