Talent.com
Lead Security Operations Engineer
Lead Security Operations EngineerCox • Mill Neck, NY, United States
No longer accepting applications
Lead Security Operations Engineer

Lead Security Operations Engineer

Cox • Mill Neck, NY, United States
3 days ago
Job type
  • Full-time
Job description

The Cybersecurity Lead DLP Engineer is responsible for leading and executing data loss prevention security operations across the enterprise. This role serves as the subject matter expert for DLP technologies, policies, and incident response, ensuring the protection of sensitive and confidential data across all business units domestically and internationally. The position requires close collaboration with IT teams, compliance, legal, and business stakeholders to evaluate, improve, and maintain comprehensive DLP controls. The Lead DLP Analyst will manage DLP product deployments, investigate data exfiltration incidents, and continuously enhance the organization's data protection posture through advanced DLP monitoring techniques and security best practices.

Primary Responsibilities :

Data Loss Prevention (DLP) Operations

  • Serve as the primary subject matter expert on Data Loss Prevention technologies, strategies, and data protection concepts across the organization.
  • Lead overall responsibility for DLP security operations including policy creation, tuning, incident detection, investigation, and response to data exfiltration attempts.
  • Conduct thorough investigations of DLP alerts and incidents, including data classification violations, policy breaches, and potential insider threats involving sensitive data.
  • Monitor, analyze, and respond to DLP events from on-premise systems, cloud environments, endpoints, email gateways, web proxies, and collaboration platforms.
  • Develop and maintain data classification frameworks and work with stakeholders to implement appropriate protection controls for each classification level.
  • Continuously improve DLP detection capabilities through advanced pattern matching, machine learning models, fingerprinting, and contextual analysis techniques.

Security Monitoring and Incident Response

  • Collaborate with IT teams, compliance, legal, and business stakeholders to coordinate comprehensive DLP monitoring and response activities.
  • Monitor and analyze DLP events across email gateways, endpoints, cloud applications, network channels, and file repositories to detect policy violations and data exfiltration attempts.
  • Lead investigations of data breach incidents, insider threat cases, and data exfiltration attempts, identifying root causes and recommending remediation actions.
  • Perform advanced analysis of data exfiltration scenarios utilizing industry standard frameworks including MITRE ATT&CK data exfiltration tactics and techniques.
  • Provide timely detection, identification, and alerts of data loss events, policy violations, anomalous data movements, and potential insider threats.
  • Distinguish between benign business activities and malicious data exfiltration through contextual analysis and threat intelligence.
  • Work closely with IT teams, legal, HR, and business units to remediate security incidents while balancing security requirements with business operations.

    • Skills :

    Data Loss Prevention (DLP)

    Ability to :

  • Design, implement, and manage enterprise DLP solutions across multiple platforms including Symantec DLP, Forcepoint DLP, Microsoft Purview, Digital Guardian, or similar technologies.
  • Create and tune comprehensive DLP policies using pattern matching, regular expressions, fingerprinting, exact data matching (EDM), and machine learning classification.
  • Implement DLP controls across all data vectors including email, web, endpoint, cloud applications, file shares, removable media, and printing.
  • Establish and maintain data classification taxonomies and apply appropriate protection measures for each sensitivity level.
  • Conduct sophisticated investigations of DLP incidents including analysis of data flows, user behavior, and potential data breach scenarios.
  • Integrate DLP solutions with SIEM, CASB, email security gateways, and other security infrastructure for comprehensive visibility.
  • Balance security requirements with business productivity through effective policy tuning and false positive reduction strategies.

    • Security Monitoring and Operations

    Ability to :

  • Work effectively with IT departments, compliance teams, legal counsel, and business stakeholders for comprehensive DLP monitoring and enforcement.
  • Perform advanced DLP event correlation, triage, and analysis to identify true positive data loss incidents versus false positives.
  • Apply contextual analysis and business knowledge to respond appropriately to data security incidents and policy violations.
  • Recognize indicators of compromise related to data exfiltration, insider threats, and unauthorized data access or transmission.
  • Lead projects to improve DLP monitoring capabilities, enhance detection accuracy, and reduce response times.
  • Demonstrate strong understanding of defense-in-depth security principles and how DLP fits within the broader security architecture.
  • Communicate complex security issues effectively to management, business stakeholders, legal teams, and technical audiences.
  • Maintain and update DLP operational guidelines, standards, procedures, and documentation.

    • Incident Response and Forensics

    Ability to :

  • Perform incident response activities specifically focused on data breach incidents, insider threats, and data exfiltration scenarios.
  • Conduct digital forensic investigations to determine data access patterns, identify compromised systems, and trace data movements.
  • Work collaboratively with internal IT teams, external forensic providers, legal counsel, and HR during sensitive data breach investigations.
  • Ensure all data security incidents are properly documented, investigated thoroughly, and remediated according to established procedures.
  • Maintain chain of custody for digital evidence and prepare detailed incident reports for management and legal review.

    • Minimum Qualifications :

  • Bachelor's degree in a related discipline and 6 years' experience in a related field. The right candidate could also have a different combination, such as a master's degree and 4 years' experience; a Ph.D. and 1 year of experience; or 18 years' experience in a related field
  • Expert-level hands-on experience implementing and managing enterprise DLP solutions (Symantec / Broadcom DLP, Forcepoint, Microsoft Purview, Digital Guardian, McAfee DLP, or similar platforms)
  • Deep working experience with Data Loss Prevention, Incident Response, Insider Threat Detection, and data security operations
  • Strong experience with log analysis, DLP event investigation, and security alert triage specific to data exfiltration scenarios
  • Working knowledge of network protocols, email systems, cloud storage platforms, and endpoint technologies as they relate to DLP monitoring
  • Experience conducting security investigations and incident response for data breach, insider threat, and data exfiltration scenarios
  • Demonstrated ability to create technical documentation, operational procedures, metrics dashboards, and executive-level reports
  • Strong understanding of data privacy regulations (GDPR, CCPA, HIPAA, PCI-DSS) and compliance requirements
  • Network Administration and System Administration background with deep understanding of Windows, Linux, macOS environments
  • Advanced scripting and programming skills (Python, PowerShell, Bash) for automation and custom integrations
  • Experience with Cloud Security (AWS, Azure, GCP) and Cloud Access Security Broker (CASB) solutions
  • Hands-on experience with digital forensics tools (EnCase, FTK, X-Ways) and eDiscovery platforms
  • Experience with User and Entity Behavior Analytics (UEBA) and Insider Threat Management platforms
  • Knowledge of machine learning and AI applications in data classification and anomaly detection

    • USD 143,600.00 - 239,300.00 per year

    Compensation :

    Compensation includes a base salary of $143,600.00 - $239,300.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate's knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.

    Benefits :

    The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company's needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.

    Create a job alert for this search

    Lead Security Engineer • Mill Neck, NY, United States

    Related jobs
    Director of Cyber Security

    Director of Cyber Security

    Atlas Air • City of White Plains, NY, United States
    Full-time
    Atlas Air is currently seeking a.Director of Cybersecurity Operations.Hybrid role – White Plains, NY.Relocation assistance is available. Leads a team of highly experienced individual contributors an...Show more
    Last updated: 30+ days ago • Promoted
    Sr Security Engineer

    Sr Security Engineer

    Uber • New York, NY, United States
    Full-time
    We are seeking a talented and experienced Sr Security Engineer to join our Threat Defense and Response team and help drive the next generation of AI-powered cyber defense capabilities.This role wil...Show more
    Last updated: 6 days ago • Promoted
    Lead AI Security Engineer

    Lead AI Security Engineer

    Capital Group • New York, NY, United States
    Full-time
    I can succeed as a Lead AI Security Engineer at Capital Group".As aLeadAISecurity Engineer, you willbe responsible forsecuring Capital Group's enterprise AI Platforms. You'llcollaborate with platfor...Show more
    Last updated: 11 days ago • Promoted
    Security Engineer (Detection and Response)

    Security Engineer (Detection and Response)

    Alchemy • New York, NY, United States
    Full-time
    The Alchemy Platform is a world class developer platform designed to make building on the blockchain easy.We've built leading infrastructure in the space, powering over$105billion in transactions f...Show more
    Last updated: 30+ days ago • Promoted
    Global Security - Command Center Team Lead

    Global Security - Command Center Team Lead

    JPMorgan Chase • New York, NY, US
    Full-time
    Join our Global Security team to safeguard our firm's most valuable assets worldwide.As a Command Center Team Lead within our Global Security Operations Centers (GSOCs) team, you will be at the for...Show more
    Last updated: 3 days ago • Promoted
    Information Security Engineer

    Information Security Engineer

    Northwell Health • Lake Success, NY, US
    Full-time
    Information Security Engineer – Lake Success, NY – Responsible for managing ERP Cloud security and audits.Analyzes, designs, implements, and troubleshoots ERP security to manage user access and sys...Show more
    Last updated: 1 day ago • Promoted
    Security Operations Lead

    Security Operations Lead

    FlexTrade • Great Neck, NY, US
    Full-time
    FlexTrade Systems is a provider of customized multi-asset execution and order management trading solutions for buy- and sell-side financial institutions. Through deep client partnerships with some o...Show more
    Last updated: 30+ days ago
    Senior Security Engineer

    Senior Security Engineer

    Recruitics Careers • New York, NY, United States
    Full-time
    Recruitics is a data-centric recruitment marketing agency that makes it easy for the world's leading brands to attract and hire great talent. We revolutionized recruitment advertising in 2012 with t...Show more
    Last updated: 6 hours ago • Promoted • New!
    Security Engineer, Operating Systems

    Security Engineer, Operating Systems

    Menlo Ventures • New York, NY, United States
    Full-time
    Anthropic’s mission is to create reliable, interpretable, and steerable AI systems.We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group ...Show more
    Last updated: 4 days ago • Promoted
    Lead Security Operations Engineer

    Lead Security Operations Engineer

    Cox • Larchmont, NY, United States
    Full-time
    Cybersecurity Lead DLP Engineer.This role serves as the subject matter expert for DLP technologies, policies, and incident response, ensuring the protection of sensitive and confidential data acros...Show more
    Last updated: 3 days ago • Promoted
    Security Engineering Lead

    Security Engineering Lead

    FlexTrade • Great Neck, NY, US
    Full-time
    Software Company headquartered in Great Neck, New York.We are celebrating 26 years as an industry pioneer and a global leader in broker-neutral trading platforms for equities, foreign exchange, opt...Show more
    Last updated: 30+ days ago
    Senior Director - Security Infrastructure & Endpoint Protection

    Senior Director - Security Infrastructure & Endpoint Protection

    Gartner • Stamford, CT, United States
    Full-time
    Senior Director Analyst - Security Infrastructure & Endpoint Protection.What makes Gartner Research a GREAT fit for you?. You are a team player who values expert insights, bold ideas and intellectua...Show more
    Last updated: 30+ days ago • Promoted
    CyberSecurity Operations Engineer - Graduate Considered

    CyberSecurity Operations Engineer - Graduate Considered

    RedTech Recruitment Ltd. • New York, CA, us
    Full-time
    Quick Apply
    We are excited to be recruiting for a Operations Engineers role working for an industry-leading cybersecurity company with bases in the US and UK, providing the opportunity to work remotely.Already...Show more
    Last updated: 14 days ago
    Director, Cyber Security

    Director, Cyber Security

    KPMG US • Stamford, CT, United States
    Full-time
    Be among the first 25 applicants.Get AI-powered advice on this job and more exclusive features.KPMG Advisory practice is currently our fastest growing practice. We are seeing tremendous client deman...Show more
    Last updated: 30+ days ago • Promoted
    Staff Cyber Security Engineer (GenAI)

    Staff Cyber Security Engineer (GenAI)

    NBCUniversal • Englewood Cliffs, NJ, United States
    Full-time
    NBCUniversal is one of the world's leading media and entertainment companies.We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to...Show more
    Last updated: less than 1 hour ago • Promoted • New!
    Security Operation Engineer - Remote

    Security Operation Engineer - Remote

    Nava Software Solutions • Jersey City, NJ, United States
    Remote
    Full-time
    NAVA Software solutions is looking for a Security Operations Engineer.This role is responsible for the ongoing monitoring, detection, investigation, and remediation of security incidents, as well a...Show more
    Last updated: 7 days ago • Promoted
    Senior Security Engineer

    Senior Security Engineer

    Recruitics • New York City, New York, USA
    Full-time
    Recruitics is a data-centric recruitment marketing agency that makes it easy for the worlds leading brands to attract and hire great talent. We revolutionized recruitment advertising in 2012 with th...Show more
    Last updated: 23 hours ago • Promoted
    Security Engineer

    Security Engineer

    Figma • New York, NY, US
    Full-time
    Figma is growing our team of passionate people on a mission to make design accessible to all.Born on the Web, Figma helps entire product teams brainstorm, design and build better products — from st...Show more
    Last updated: 30+ days ago • Promoted