M&T Bank Corporation
Cybersecurity DLP Engineer
M&T Bank Corporation, Buffalo, New York, United States, 14266
Cybersecurity DLP Engineer
Apply remote type: Hybrid Positionlocations: Buffalo, NYtime type: Full timeposted on: Posted 2 Days Agojob requisition id: R63871Overview:An ideal Data Loss Prevention Engineer will design detailed data protection solutions and present as a Subject Matter Expert (SME) on various industry Data Loss Prevention tool sets. The candidate will provide highly technical and detailed data analysis in efforts to drive continuous data protection improvement and provide detailed technical documentation on system architecture (including Visio), policy configurations and process workflows.Primary Responsibilities:Data Loss Prevention Engineer will primarily be responsible for daily monitoring and maintenance of M&T Bank Data Loss Prevention tool sets. This includes being SME on DLP solutions, monitoring systems performance, analyzing, and making recommendations to improve detection capabilities based on regulatory requirements, business processes and user behaviors.Support development, implementation, and execution of various operational risk and compliance related initiatives, systems, and processes.Provide centralized governance, compliance, and risk management expertise to M&T Bank Corporation business lines, support functions and managers concerning information security and privacy regulatory compliance and/or risk management and Information Technology and Bank Operations on all applicable information security and privacy regulations concerning financial institutions.With collaboration from senior team members, provide guidance, testing plans, and/or survey documents to be used by all business units to ensure conformance to established compliance, regulatory, best practice, and risk management programs.Identify potential conformance issues, review with supervisor or senior professionals, and provide to functional areas requiring improvements.Responsible for extensive contact with operations, technology, and business unit personnel in a training and auditing capacity.Support functions, systems, and processes critical to the corporation's ability to meet regulatory, legal, and risk mitigation requirements and to reduce the risk of fine/penalties resulting from non-compliance that would impact profitability.Interact with various internal and external audit/regulatory examination personnel.Operate under supervision of the Team Leader and provide guidance and mentoring to junior team members.Responsible for regular interaction with middle management, supervisors, and associated staff, Internal Audit, Compliance, Risk Management, the Corporate Information Security Officer (CISO), Chief Counsel's Office (CCO), and/or other technology personnel, clients, and vendors.Interact, coordinate, and oversee initiatives with internal and outside teams and external professional organizations supporting areas of expertise.Assist with documenting and communicating proposed new approaches, methods, technologies, or breakthroughs in area of expertise and coordinates efforts with junior team members to ensure accuracy and timeliness.Represent information security as a technical representative and Subject Matter Expert (SME) for governance, compliance, and risk management function on committees, ad-hoc projects, etc. as assigned.Work independently on all high-level systems analysis and technical phases of development.Oversee and coordinate activities of other Cybersecurity Network Defense team members on projects ranging in scope from small to large, may lead project activities.Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management.Promote an environment that supports diversity and reflects the M&T Bank brand.Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.Complete other related duties as assigned.Education and Experience Required:Associate degree and a minimum of 3 years’ relevant work experience, OR in lieu of a degree, a combined minimum of 5 years’ higher education and/or work experience, including a minimum of relevant work experience in two (2) or more of the following Cybersecurity domains: Security and Risk Management; Asset Security; Security Engineering; Communication and Network Security; Identity and Access Management; Security Testing; and Security Operations.Strong background of architecting, engineering, and automating security solutions for a global environment with focus on Data Loss Prevention solutions.Knowledge of O365 Purview and MIP labeling technology.Knowledge of Windows/Linux OS.Experience of Regex creation and testing.Knowledge of SIEM integrations.Understanding of Wireshark/network capture logs.General knowledge of infrastructure (LDAP, Group Policy, Kerberos, Active Directory, etc.) and networking (routing, firewalls, OSI Model, packet trace and analysis, etc.)Prior experience in performing complex problem and data analysis and problem resolution across multiple disciplines.Prior experience with and demonstrable aptitude for quickly learning new technical skills and supporting multiple systems, tools, and processes.Detailed technical knowledge of Cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).Education and Experience Preferred:Bachelor’s degree and a minimum of 2 years’ in Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations, or in lieu of a degree, a combined minimum of 6 years’ higher education and/or work experience, including a minimum of 2 years’ in Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations.Experience in a cyber security operational environment.Knowledge and experience using an incident response framework.Programming or scripting experience including API integrations.Knowledge of User and Entity Behavior Analytics solutions and training.Presentation skills.Data analysis including Excel/PowerBI.Detailed technical experience with virtual, and/or distributed computing environments.CISSP, CISM, or CRISC certification or Cybersecurity domain-related industry-recognized certification.Ability to act as a surrogate team leader to assign, review, evaluate and prioritize team efforts.Compensation:
M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $93,581.10 - $155,968.51 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.Location:
Buffalo, New York, United States of AmericaAt M&T Bank, we make a difference in people’s lives.
For more than 160 years, we’ve been providing our customers with guidance and financial solutions, leading our communities through challenges and growth opportunities, and empowering our employees to build purpose-driven careers.Our talent and culture set us apart.
Our core values drive the work we do – integrity, ownership, collaboration, curiosity, candor. We seek to further build upon our record of success by bringing in diverse talents and fresh skill sets while supporting the growth and development of all team members.We support our employees every step of the way.Competitive compensationFull medical & dental benefits, Heath Savings & Flexible Spending Accounts, and life/disability insuranceGenerous paid time off (PTO) plus 11 paid holidays and an option to buy additional PTO401(k) match at 5% with options for Roth and discretionary employer contributionsA deep commitment to equity, including 14 resource group charters, a D&I sponsorship program, 40 annual paid volunteer hours and moreVarious options for tuition assistance, paid parental leave, stock purchase, wellness and employee discountsWe need you.
Are you ready to join us? Apply today to start the journey.If you are unable to apply through this site due to technical issues or are in need of an accommodation to apply, please contact us at careersitesupport@mtb.com for assistance.M&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer, including disabilities and veterans.M&T Bank Corporation has policies and procedures in place to promote a drug-free workplace.
#J-18808-Ljbffr
Apply remote type: Hybrid Positionlocations: Buffalo, NYtime type: Full timeposted on: Posted 2 Days Agojob requisition id: R63871Overview:An ideal Data Loss Prevention Engineer will design detailed data protection solutions and present as a Subject Matter Expert (SME) on various industry Data Loss Prevention tool sets. The candidate will provide highly technical and detailed data analysis in efforts to drive continuous data protection improvement and provide detailed technical documentation on system architecture (including Visio), policy configurations and process workflows.Primary Responsibilities:Data Loss Prevention Engineer will primarily be responsible for daily monitoring and maintenance of M&T Bank Data Loss Prevention tool sets. This includes being SME on DLP solutions, monitoring systems performance, analyzing, and making recommendations to improve detection capabilities based on regulatory requirements, business processes and user behaviors.Support development, implementation, and execution of various operational risk and compliance related initiatives, systems, and processes.Provide centralized governance, compliance, and risk management expertise to M&T Bank Corporation business lines, support functions and managers concerning information security and privacy regulatory compliance and/or risk management and Information Technology and Bank Operations on all applicable information security and privacy regulations concerning financial institutions.With collaboration from senior team members, provide guidance, testing plans, and/or survey documents to be used by all business units to ensure conformance to established compliance, regulatory, best practice, and risk management programs.Identify potential conformance issues, review with supervisor or senior professionals, and provide to functional areas requiring improvements.Responsible for extensive contact with operations, technology, and business unit personnel in a training and auditing capacity.Support functions, systems, and processes critical to the corporation's ability to meet regulatory, legal, and risk mitigation requirements and to reduce the risk of fine/penalties resulting from non-compliance that would impact profitability.Interact with various internal and external audit/regulatory examination personnel.Operate under supervision of the Team Leader and provide guidance and mentoring to junior team members.Responsible for regular interaction with middle management, supervisors, and associated staff, Internal Audit, Compliance, Risk Management, the Corporate Information Security Officer (CISO), Chief Counsel's Office (CCO), and/or other technology personnel, clients, and vendors.Interact, coordinate, and oversee initiatives with internal and outside teams and external professional organizations supporting areas of expertise.Assist with documenting and communicating proposed new approaches, methods, technologies, or breakthroughs in area of expertise and coordinates efforts with junior team members to ensure accuracy and timeliness.Represent information security as a technical representative and Subject Matter Expert (SME) for governance, compliance, and risk management function on committees, ad-hoc projects, etc. as assigned.Work independently on all high-level systems analysis and technical phases of development.Oversee and coordinate activities of other Cybersecurity Network Defense team members on projects ranging in scope from small to large, may lead project activities.Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management.Promote an environment that supports diversity and reflects the M&T Bank brand.Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.Complete other related duties as assigned.Education and Experience Required:Associate degree and a minimum of 3 years’ relevant work experience, OR in lieu of a degree, a combined minimum of 5 years’ higher education and/or work experience, including a minimum of relevant work experience in two (2) or more of the following Cybersecurity domains: Security and Risk Management; Asset Security; Security Engineering; Communication and Network Security; Identity and Access Management; Security Testing; and Security Operations.Strong background of architecting, engineering, and automating security solutions for a global environment with focus on Data Loss Prevention solutions.Knowledge of O365 Purview and MIP labeling technology.Knowledge of Windows/Linux OS.Experience of Regex creation and testing.Knowledge of SIEM integrations.Understanding of Wireshark/network capture logs.General knowledge of infrastructure (LDAP, Group Policy, Kerberos, Active Directory, etc.) and networking (routing, firewalls, OSI Model, packet trace and analysis, etc.)Prior experience in performing complex problem and data analysis and problem resolution across multiple disciplines.Prior experience with and demonstrable aptitude for quickly learning new technical skills and supporting multiple systems, tools, and processes.Detailed technical knowledge of Cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).Education and Experience Preferred:Bachelor’s degree and a minimum of 2 years’ in Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations, or in lieu of a degree, a combined minimum of 6 years’ higher education and/or work experience, including a minimum of 2 years’ in Security and Risk Management, Asset Security, Security Engineering, Communication and Network Security, Identity and Access Management, Security Testing and Security Operations.Experience in a cyber security operational environment.Knowledge and experience using an incident response framework.Programming or scripting experience including API integrations.Knowledge of User and Entity Behavior Analytics solutions and training.Presentation skills.Data analysis including Excel/PowerBI.Detailed technical experience with virtual, and/or distributed computing environments.CISSP, CISM, or CRISC certification or Cybersecurity domain-related industry-recognized certification.Ability to act as a surrogate team leader to assign, review, evaluate and prioritize team efforts.Compensation:
M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $93,581.10 - $155,968.51 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.Location:
Buffalo, New York, United States of AmericaAt M&T Bank, we make a difference in people’s lives.
For more than 160 years, we’ve been providing our customers with guidance and financial solutions, leading our communities through challenges and growth opportunities, and empowering our employees to build purpose-driven careers.Our talent and culture set us apart.
Our core values drive the work we do – integrity, ownership, collaboration, curiosity, candor. We seek to further build upon our record of success by bringing in diverse talents and fresh skill sets while supporting the growth and development of all team members.We support our employees every step of the way.Competitive compensationFull medical & dental benefits, Heath Savings & Flexible Spending Accounts, and life/disability insuranceGenerous paid time off (PTO) plus 11 paid holidays and an option to buy additional PTO401(k) match at 5% with options for Roth and discretionary employer contributionsA deep commitment to equity, including 14 resource group charters, a D&I sponsorship program, 40 annual paid volunteer hours and moreVarious options for tuition assistance, paid parental leave, stock purchase, wellness and employee discountsWe need you.
Are you ready to join us? Apply today to start the journey.If you are unable to apply through this site due to technical issues or are in need of an accommodation to apply, please contact us at careersitesupport@mtb.com for assistance.M&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer, including disabilities and veterans.M&T Bank Corporation has policies and procedures in place to promote a drug-free workplace.
#J-18808-Ljbffr