Senior Data Security Analyst

You are as unique as your background, experience and point of view. Here, you’ll be encouraged, empowered and challenged to be your best self. You'll work with dynamic colleagues - experts in their fields - who are eager to share their knowledge with you. Your leaders will inspire and help you reach your potential and soar to new heights. Every day, you'll have new and exciting opportunities to make life brighter for our Clients - who are at the heart of everything we do. Discover how you can make a difference in the lives of individuals, families and communities around the world.

Job Description:

Job description (heading) /  Description du poste (titre)

• This is a growing team at Sun Life that is just getting started on a new journey in Data Protection / DLP. As a result, you will gain broad experience and wear multiple hats.

• Reporting to the Manager, Data Protection, the Senior Data Security Analyst will be responsible for defining and aligning strategies for data protection to ensure that exposures to data and cybersecurity threats are identified and managed at an acceptable level. The position is an integral part in the development and implementation of data protection programs across the enterprise. In this role you will regularly act as a voice of Information Security to clients and management, building cyber security confidence in support of business development and governance processes.

What will you do:

• Develop and maintain strong business and technology relationships, becoming a trusted partner to these groups
• Investigate moderate to complex events and communicate to senior leadership
• Identify risk and other security themes and develop recommendations for resolution
• Ensure that anomalies are investigated and documented thoroughly and followed up as appropriate
• Investigate and resolve systemic issues
• Triage on Insider Threat cases
• Escalate issues to senior management as warranted
• Work at the forefront of designing innovative insider threat solutions
• Advanced knowledge of organization, technology controls, security and risk issues
• Promote a team environment
• Ability to take ownership of tasks to completeness
• Document new processes, provide training and knowledge transfers to team members

Qualifications (heading) / Compétences (titre)

• 2+ years of experience in security or IT industry

• Knowledge or Experience developing policies/rules for Endpoint & Network Prevent DLP and CASB

• Knowledge or Experience with data discovery and designing discovery policies/rules

• Knowledge or Working knowledge of cybersecurity policies and standards related to Data Protection

• Knowledge or Hands-on experience with Data Protection/Security tools, e.g., Data Classification, AIP, Encryption

• Knowledge or Experience with Data Activity Monitoring tool

• Knowledge or Experience with Firewalls/Web Proxies, Networking and Endpoint protection. While McAfee is preferred, we will also consider Symantec, or Forcepoint, or Proofpoint etc.

• Knowledge or Experience developing automation scripts, or a demonstrated aptitude for programming, is required (Python is preferred).

• Knowledge or Experience with AWS, GCP, and Azure cloud services preferred

• Knowledge or Experience with one or more SIEM and UEBA platforms (eg., Splunk, QRadar) would be a plus

Job Category:

Posting End Date: