Senior Cybersecurity Engineer - DLP/Insider Threat
Buffalo, NY, United States
Full Time Senior-level / Expert USD 93K - 155K
M&T Bank
With a community bank approach, M&T Bank helps people reach their personal and business goals with banking, mortgage, loan and investment services.This role offers a hybrid work schedule; offering the flexibility to work remotely two days a week, while providing the opportunity for in-person collaboration at our Buffalo, NY Tech Hub.
Overview:Responsible for designing and implementing medium-scale security systems and solutions to develop or enhance new or existing security solutions, solving moderate to complex problems or enhancements across Insider Threat and Data Loss Prevention. Completes day-to-day support activities and special projects.
Primary Responsibilities:
- Design and Implementation: Responsible for designing, implementing, and managing systems that prevent the transfer, sharing, and loss of sensitive data and evaluate Insider Threat risks.
- Policy Creation and Enforcement: Create and enforce policies to prevent data leakage, loss, or improper sharing, such as blocking certain file transfers or restricting access to classified information.
- Integration with Security Tools: Integrate DLP and Insider Threat solutions with other security tools like firewalls, endpoint protection, and email gateways.
- Maintenance and Optimization: Maintain and optimize DLP tools, ensuring they perform effectively, updating rules, and refining policies based on evolving data protection needs.
- Security Measures: Implement encryption, data labeling, access controls, and other security measures.
- Cross-Functional Integration: Develop an effective cross-functional cybersecurity insider threat operating model integrated into the broader Insider Threat Program and supporting processes.
- Analytical Framework: Define an analytical framework that enables proactive identification and prioritization of use cases supported by a data strategy to develop sophisticated analytics.
- Logging and Monitoring: Establish effective logging and monitoring processes and capabilities to build the foundation and baseline data for identifying out-of-pattern behavior.
- Technology Capabilities: Develop robust technology capabilities that enable the operationalization of analytics and security visibility processes.
- Security Solution Design: Design components of security solutions with significant complexity and moderate risk, ensuring alignment with cybersecurity objectives and organizational needs.
- Control Configuration and Development: Configure and develop controls for security tools or systems to fortify system defenses.
- Testing and Execution: Design and execute testing of systems and technology thoroughly in coordination with cross-functional teams to ensure reliability and effectiveness of security measures.
- System Deployment: Deploy security systems and code, ensuring seamless integration into existing infrastructure while minimizing disruptions.
- Continuous Monitoring and Tuning: Continuously monitor and tune security systems to enhance efficiency and effectiveness in mitigating and detecting threats.
- Automation: Develop and implement automated installation, configuration, and processes to streamline security operations and response activities.
- Collaboration: Partner with Cybersecurity and Technology teams on security solutions implementations and maintenance.
- Process Enhancement: Proactively recommend process enhancements and implement prioritized improvements within the Cybersecurity team.
- Vendor Engagement: Engage with vendors for routine security products or solutions support.
- Risk and Regulatory Standards: Understand and adhere to the company’s risk and regulatory standards, policies, and controls in accordance with the company’s risk appetite. Design, implement, maintain, and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management.
Scope of Responsibilities:
- This role is used in one or more of the following cybersecurity function:
- Data Loss Prevention Engineering – designs and implements strategies and technologies to prevent unauthorized access, transmission, or leakage of data within and outside of the Bank's network and systems.
- Insider Threat Engineering - plays a crucial role in identifying, assessing, and mitigating risks posed by insiders who have authorized access to sensitive information, systems, and networks. This role involves developing and implementing strategies to detect and prevent insider threats, ensuring the security and integrity of the organization's assets.
- Partners primarily with individual contributors and leaders within Cybersecurity and Technology, and occasionally senior leaders within Cybersecurity.
- Determines and develops approach to solutions. Work is accomplished with periodic check-ins for alignment and limited direction. Work is evaluated upon completion to ensure objectives have been met.
- Proficient ability to use multiple Cybersecurity tools, specific to function.
Education and Experience Required:
- Bachelor's degree and a minimum of 3 years’ relevant work experience, or in lieu of a degree, a combined minimum of 7 years’ higher education and/or work experience
Education and Experience Preferred:
- Intermediate understanding of the security system development and infrastructure lifecycle and architecture, and systems design
- Proven experience with the tools utilized in assigned Cybersecurity function
- Experience translating architecture into technical requirements.
- Proficient level of critical thinking and problem solving
- Excellent written and verbal communication skills
- Proven experience collaborating with leaders to execute results.
- Prior experience seeking buy-in of others to align on processes.
- Ability to analyze and draw conclusions based on quantitative data from multiple sources.
- Proficiency in prioritizing and managing multiple responsibilities, ensuring that deadlines are met and projects are executed efficiently.
Tags: Analytics Automation Encryption Firewalls Monitoring Strategy
Perks/benefits: Competitive pay
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.