Insight Global
Secret Remote Cyber Security/DLP Specialist
Insight Global, Charleston, South Carolina, United States, 29408
Insight Global is looking to add two Secret cleared DLP/Cyber Security Specialists to the team sitting fully REMOTE in support of a newly awarded Federal program. The DLP specialists will be responsible for the following:
Leverage cloud-native Data Loss Prevention (DLP) tooling to categorize, audit, respond to, and intervene in actual or would-be data loss events.
Collaborate with security architects, engineers, and uto design DLP implementations that align with the University's cybersecurity posture while allowing for legitimate information interchange. This involves selecting appropriate DLP tools, defining data type detection and labeling policies, applying appropriate rule-based loss prevention policies, and establishing data flow monitoring strategies.
Serve as a subject matter expert on DLP tools across heterogeneous data types, computing platforms, sharing needs, and operational environments. Tailor DLP policies and rules to identify sensitive data based on content, context, and user behavior.
Implement comprehensive data monitoring mechanisms to track data movement within each environment. Utilize all available tooling to identify potential data exfiltration attempts or unauthorized data access and proactively identify gaps in the same tools.
Lead investigations into DLP incidents, meticulously analyzing data logs, network traffic, and user activities. Contain data breaches, identify affected systems and data, and implement remediation measures to prevent future incidents.
Regularly review and update DLP policies and procedures to adapt to evolving threats, technologies, and regulatory requirements. Conduct periodic risk assessments to identify potential vulnerabilities and weaknesses in the DLP framework.
Maintain up-to-date knowledge of DoD cybersecurity policies, regulations, and standards.
Collaborate with other security teams, such as vulnerability management, incident response, and security operations, to integrate DLP with existing security tools and technologies, fostering a cohesive security ecosystem.
Participate in security audits and assessments conducted by internal and external entities. Provide evidence of DLP effectiveness and remediate any identified shortcomings.
Proactively identify opportunities to enhance data protection measures within the IMIT environment. Recommend and implement new technologies, processes, or training programs to bolster the DoD's security posture.
Develop and maintain comprehensive incident response plans tailored to DLP incidents. Define roles, responsibilities, communication protocols, and escalation procedures to ensure a swift and coordinated response.
Actively participate in incident response activities, including data breach investigations, containment, and recovery. Collaborate with other security professionals, legal teams, and public affairs to manage the incident's impact and communicate effectively with stakeholders.
Conduct thorough post-incident analysis to identify the root cause of DLP incidents. Implement corrective actions to address vulnerabilities and prevent similar incidents in the future.
Develop and deliver security awareness training programs to educate DoD personnel about data security best practices, DLP policies, and the importance of safeguarding sensitive information. Foster a culture of security awareness across the organization.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .
Required Skills & Experience
6+ years of IT Security experience, including a minimum of two (2) years of support to Federal or Defense RMF implementation experience, may be substituted if a B.S. degree is not held
Minimum of four (4) year's hands-on compliance experience
Demonstrated mastery of DLP concepts, processes, and practical procedures.
Familiarity with Google Workspace / Cloud is desirable but not required.
Secret clearance
IAM Level II certification required - (CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPPCISSP, CISM, Security+, CAP)
Nice to Have Skills & Experience
Additional technical certification desired - (CCNA, VCP, MCSE)
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.
Leverage cloud-native Data Loss Prevention (DLP) tooling to categorize, audit, respond to, and intervene in actual or would-be data loss events.
Collaborate with security architects, engineers, and uto design DLP implementations that align with the University's cybersecurity posture while allowing for legitimate information interchange. This involves selecting appropriate DLP tools, defining data type detection and labeling policies, applying appropriate rule-based loss prevention policies, and establishing data flow monitoring strategies.
Serve as a subject matter expert on DLP tools across heterogeneous data types, computing platforms, sharing needs, and operational environments. Tailor DLP policies and rules to identify sensitive data based on content, context, and user behavior.
Implement comprehensive data monitoring mechanisms to track data movement within each environment. Utilize all available tooling to identify potential data exfiltration attempts or unauthorized data access and proactively identify gaps in the same tools.
Lead investigations into DLP incidents, meticulously analyzing data logs, network traffic, and user activities. Contain data breaches, identify affected systems and data, and implement remediation measures to prevent future incidents.
Regularly review and update DLP policies and procedures to adapt to evolving threats, technologies, and regulatory requirements. Conduct periodic risk assessments to identify potential vulnerabilities and weaknesses in the DLP framework.
Maintain up-to-date knowledge of DoD cybersecurity policies, regulations, and standards.
Collaborate with other security teams, such as vulnerability management, incident response, and security operations, to integrate DLP with existing security tools and technologies, fostering a cohesive security ecosystem.
Participate in security audits and assessments conducted by internal and external entities. Provide evidence of DLP effectiveness and remediate any identified shortcomings.
Proactively identify opportunities to enhance data protection measures within the IMIT environment. Recommend and implement new technologies, processes, or training programs to bolster the DoD's security posture.
Develop and maintain comprehensive incident response plans tailored to DLP incidents. Define roles, responsibilities, communication protocols, and escalation procedures to ensure a swift and coordinated response.
Actively participate in incident response activities, including data breach investigations, containment, and recovery. Collaborate with other security professionals, legal teams, and public affairs to manage the incident's impact and communicate effectively with stakeholders.
Conduct thorough post-incident analysis to identify the root cause of DLP incidents. Implement corrective actions to address vulnerabilities and prevent similar incidents in the future.
Develop and deliver security awareness training programs to educate DoD personnel about data security best practices, DLP policies, and the importance of safeguarding sensitive information. Foster a culture of security awareness across the organization.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .
Required Skills & Experience
6+ years of IT Security experience, including a minimum of two (2) years of support to Federal or Defense RMF implementation experience, may be substituted if a B.S. degree is not held
Minimum of four (4) year's hands-on compliance experience
Demonstrated mastery of DLP concepts, processes, and practical procedures.
Familiarity with Google Workspace / Cloud is desirable but not required.
Secret clearance
IAM Level II certification required - (CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPPCISSP, CISM, Security+, CAP)
Nice to Have Skills & Experience
Additional technical certification desired - (CCNA, VCP, MCSE)
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.