Senior Data Loss Prevention (DLP) Analyst

Archer is an aerospace company based in San Jose, California building an all-electric vertical takeoff and landing aircraft with a mission to advance the benefits of sustainable air mobility. We are designing, manufacturing, and operating an all-electric aircraft that can carry four passengers while producing minimal noise.

Our sights are set high and our problems are hard, and we believe that diversity in the workplace is what makes us smarter, drives better insights, and will ultimately lift us all to success. We are dedicated to cultivating an equitable and inclusive environment that embraces our differences, and supports and celebrates all of our team members.

Role Overview

The Senior Data Loss Prevention (DLP) Analyst is a subject matter expert responsible for designing, implementing, and managing DLP solutions to protect sensitive data across the organization. This role focuses on developing and maintaining DLP policies, monitoring and investigating potential data loss incidents, collaborating with cross-functional teams, and ensuring compliance with regulatory and contractual requirements. The Senior DLP Analyst plays a critical part in managing insider risk, data discovery, classification, and overall data protection strategy.

Key Responsibilities

• DLP Program
• Design, implement, and maintain enterprise DLP technology solutions across endpoints, servers, cloud, and network environments.
• Act as a subject matter expert for DLP tools (e.g., Microsoft Purview, Symantec DLP, McAfee DLP, Digital Guardian).
• Develop and refine DLP policies and technical architecture diagrams to support data protection objectives.
• Oversee DLP endpoint agent deployment, configuration, and maintenance.
  
  
• Data Discovery, Classification, and Protection
• Lead data discovery and classification efforts using DLP and information protection tools (e.g., Microsoft Information Protection, Azure Information Protection).
• Collaborate with privacy, engineering, and cybersecurity teams to ensure data is classified and protected in line with regulatory and business requirements.
  
  
• Insider Risk and Incident Management
• Monitor and analyze DLP alerts to detect and respond to potential data loss or exfiltration incidents.
• Investigate and resolve incidents involving the theft or loss of sensitive, consumer, employee, or intellectual property data.
• Manage insider risk using dedicated tools (e.g., Microsoft Insider Risk Management).
  
  
• Continuous Improvement and Optimization
• Tune DLP policies and rules to reduce false positives and enhance detection accuracy.
• Identify opportunities to automate enforcement and response actions.
• Stay current with industry trends, emerging threats, and best practices in DLP and insider risk management.
  
  
• Collaboration and Communication
• Interface with stakeholders across cyber, privacy, engineering, and data protection functions to align DLP with organizational goals.
• Communicate risks, incidents, and recommendations to management and executive stakeholders.
• Create and maintain technical documentation, incident reports, and dashboards for management review.
  
  
• Compliance and Governance
• Ensure DLP program aligns with regulatory requirements (e.g., GDPR,PCI,NIST 800-53) and contractual obligations.
• Support audits and assessments related to data protection and DLP controls.

Required Skills and Qualifications

• Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or related field.
• 3+ years of experience in cybersecurity, with a focus on data loss prevention, insider threat, or data protection.
• Deep technical expertise in DLP solutions (e.g., Microsoft Purview, Forcepoint, Symantec DLP, McAfee DLP, Digital Guardian, Netskope).
• Experience with data discovery, classification, and protection technologies.
• Strong analytical, investigative, and incident response skills.
• Familiarity with SIEM tools and user behavior analytics (UBA).
• Excellent written and verbal communication skills; ability to convey technical concepts to non-technical stakeholders.
• Ability to work collaboratively in cross-functional teams and manage multiple priorities.

Preferred Qualifications

• Industry certifications (e.g., CISSP, CISM, CEH, Security+, Insider Threat Program Manager).
• Experience with cloud security, endpoint protection, or CASB solutions.
• Knowledge of regulatory and compliance frameworks relevant to data protection (e.g., GDPR, PCI, NIST 800-53,PCI,FedRAMP).

Archer is committed to working with and providing reasonable accommodations to job applicants with physical or mental disabilities, and those with sincerely held religious beliefs. Applicants who may require reasonable accommodation for any part of the application or hiring process should provide their name and contact information to Archer’s People Team at people@archer.com. Reasonable accommodations will be determined on a case-by-case basis.

At Archer we aim to attract, retain, and motivate talent that possess the skills and leadership necessary to grow our business. We drive a pay-for-performance culture and reward performance that supports the Company’s business strategy. For this position we are targeting a base pay between $134,000 and $163,000. Actual compensation offered will be determined by factors such as job-related knowledge, skills, and experience.

Archer is committed to working with and providing reasonable accommodations to job applicants with physical or mental disabilities, and those with sincerely held religious beliefs. Applicants who may require reasonable accommodation for any part of the application or hiring process should provide their name and contact information to Archer’s People Team at people@archer.com. Reasonable accommodations will be determined on a case-by-case basis.

Information collected and processed as part of any job applications you choose to submit is subject to Archer's Candidate Privacy Policy.

Archer is unable to provide work visa sponsorship for this position at the present time.

Archer is proud to be an Equal Opportunity employer committed to diversity and inclusivity in the workplace. All aspects of employment are decided on the basis of merit, qualifications, and business needs. We do not discriminate based upon race, color, religion, sex, sexual orientation, age, national origin, disability status, protected veteran status, gender identity or any other characteristic protected by federal, state or local laws.

Archer Aviation does not engage with external recruiting agencies/individual recruiters with whom it does not have a prior written agreement. Archer reserves the right to make use of any unsolicited resumes that it receives and bears no responsibility for payment of any fees asserted from the use of unsolicited resumes. If you are a recruiting agency or individual recruiter wishing to do business with Archer, please reach out to People@archer.com. All employment processes are managed by the Archer People Team.