Data Loss Prevention Engineer

Job Description: Data Loss Prevention (DLP) Engineer

Data loss prevention (DLP) systems detect potential data breach incidents in a timely manner and prevent them by monitoring data while in-use, in-transit, and at-rest. DLP systems can be both appliance-based and host-based with components for network monitoring, discovery scanning, and perimeter protection. Paymentus is seeking a Data Loss Prevention (DLP) Engineer with a foundational understanding of Privileged Access Management (PAM) and Identity and Access Management (IAM) to join our growing Cyber Security team. Our environment presents a unique challenge for security professionals. In this role, you will be responsible for designing, implementing, monitoring, reacting, and reporting on information security events within the DLP scope. Additionally, the role includes managing security tools and IT systems with a special focus on DLP enablement.

RESPONSIBILITIES:

• Perform data review and analysis to identify and fingerprint information to be protected.
• Develop policies to monitor protected data while in-use, in-transit, and at-rest with response rules to prevent leakage of protected information assets.
• Design and implement data loss prevention solutions for corporate and production systems.
• Develop workflows for handling incidents and alerts related to protected data policy infringements.
• Communicate with internal and external resources to ensure DLP policies meet compliance and security requirements.
• Resolve problems related to DLP solutions implementation, performance, reliability, and availability.
• Perform DLP solutions administration and maintenance and keep DLP documentation up-to-date.
• Configure and tune DLP systems, policies, and response rules.
• Ensure that Service Level Agreements (SLAs) are met.
• Provide assessment/audit support during internal or external security audits, including but not limited to PCI-DSS and SOC2 audits.
• Serve as a subject matter expert (SME) for other teams in DLP-related questions.
• Assist in providing best practice solutions for data protection.
• Assist in developing policies and standards for data loss prevention.
• Report on DLP-related issues, propose process and technical improvements.
• Support the Security Operations Center (SOC) by leading efforts requiring data loss prevention expertise.
• Provide advice, training, and technical support to all system stakeholders.

TECHNICAL QUALIFICATIONS:

• 5+ years of related work experience.
• Experience designing, implementing, and operating Data Loss Prevention solutions for SaaS and hybrid cloud environments.
• Basic understanding of PAM and IAM concepts.
• Experience with scripting and/or development tools used with application integration into identity and access management and SIEM systems.

Nice to have:

• Experience in implementing DLP solutions for cloud email solutions such as GSuite or Office365.
• Knowledge of PCI DSS, HIPAA, GDPR regulations.
• Knowledge of core Information Security concepts related to Governance, Risk, and Compliance.
• Current information security certifications such as CISM, CRISC, or CISSP.

SOFT SKILLS:

• Has a good understanding of security concepts and interested in further developing security skills.
• Has an automation mindset.
• Capable of working in a fast-paced environment, adapting to changing priorities.
• Self-starter with an appreciation for technical challenges and complex problems.
• Focused and detail-oriented.
• Able to work independently and as part of a multidiscipline team.
• Has excellent written and verbal communication skills to articulate problems and solutions to both technical and non-technical audiences.
• Possesses superior troubleshooting and analytical skills to perform root cause analysis and suggest out-of-the-box solutions.
• Uses a proactive approach to prevent issues from re-occurring.

EEO Statement

Paymentus is an equal opportunity employer. We enthusiastically accept our responsibility to make employment decisions without regard to race, religious creed, color, age, sex, sexual orientation, national origin, ancestry, citizenship status, religion, marital status, disability, military service or veteran status, genetic information, medical condition including medical characteristics, or any other classification protected by applicable federal, state, and local laws and ordinances. Our management is dedicated to ensuring the fulfillment of this policy with respect to hiring, placement, promotion, transfer, demotion, layoff, termination, recruitment advertising, pay, and other forms of compensation, training, and general treatment during employment.

Reasonable Accommodation

Paymentus recognizes and supports its obligation to endeavor to accommodate job applicants and employees with known physical or mental disabilities who are able to perform the essential functions of the position, with or without reasonable accommodation. Paymentus will endeavor to provide reasonable accommodations to otherwise qualified job applicants and employees with known physical or mental disabilities, unless doing so would impose an undue hardship on the Company or pose a direct threat of substantial harm to the employee or others.

An applicant or employee who believes he or she needs a reasonable accommodation of a disability should discuss the need for possible accommodation with the Human Resources Department, or his or her direct supervisor.