|
Brief Summary:
The DLP Security Analyst will be primarily responsible for the maintenance and daily
monitoring of the enterprise Data Loss Prevention (DLP) solutions. The main duties of the
person in this role will include proper care and administration of the Data Loss Prevention
(DLP) environments and monitoring and responding to the alerts that generated. This
person will interface closely with other DLP Security Analysts, SecOps Security Engineers and
internal customers.
Skills and attributes for success:
- Support the DLP and other related technology which includes configuring policies,
upgrading and patching, troubleshooting, upgrades etc
- Responsible to identify DLP threats, formulate policies and implement robust detection
- Follow processes to maintain the DLP system including configuration of policies to protect
information at Lazada.
- Monitor alerts generated from the DLP systems and other technologies within the defined
SLAs
- Triage, respond and analyze alerts
Analyze system or network logs to correlate DLP activities
Follow SOPs and work with other stakeholders for DLP incidents
Publish DLP related investigation reports as required
Understand and follow the incident response process through event escalations
Respond to escalations from security operations, audit or compliance teams and
engage L3 team when required
Support the digital forensics investigation team when required
Respond to escalations by the Incident Response Team
Follow the established incident response practice to respond, contain and mitigate
DLP or other related cybersecurity events
- Provide daily, weekly and monthly reports/stats to L3 as defined
Job Requirements:
About You:
· Experience in administration of a DLP tool which includes configuring policies, upgrading
and patching
· Great understanding of Information Security concepts related to Governance, Risk &
Compliance
· Good knowledge of Windows OS, common network Protocols, traffic analysis
· Programming experience in Python, Shell scripting or other language
· BS/MS in Computer Science or equivalent practical experience
· English working proficiency (written and spoken)
· Available to work on-call and on occasional overtime (weekends, sale campaigns, etc.)
· Passionate, curious, loves challenges and eager to learn.
Preferred qualifications:
· Data Loss Prevention (DLP) Technology support and Event Handling for 1-2 years of
experience
· Information Security concepts related to Governance, Risk & Compliance
· Preferred relevant SOC experience in handling security alerts, analysis and response
· Exploring logs, logs management and SIEM operation
· Digital forensics and Incident Response � |