- Accountability for the technical management and administration of the DLP and IRM platform.
- Lead and manage the Insider Threat Engineering team - a geographically and culturally diverse team of engineers, providing guidance, coaching and support to ensure the successful execution of their responsibilities, and the effective operation of our Insider Threat program.
- Work closely with the L1 Insider Threat Manager and Global Head of Insider Threat to develop, implement and refine strategies, rules, policies, and procedures to help prevent data loss and protect sensitive information across the organisation.
- Produce a technical roadmap that is aligned to the overall Cyber Security strategy.
- Ensure that DLP and IRM policies are fine tuned and matured to reduce the number of false positives.
- Collaborate with cross-functional teams, including IT, Cyber Security, HR, legal, and compliance, to define and enforce data protection and insider risk requirements, policies and standards.
- Conduct regular assessments of the Insider Threat Engineering function to identify areas for continuous improvement.
- Provide regular reports and updates to senior management on the performance and effectiveness of the Insider Threat Engineering team.
- Identify trends and drive requirements aimed at improving and enhancing existing DLP and IRM policies, and report this upward through the security management chain.
Secondary responsibilities
- Be an integral part of projects that enhance insider threat and data protection policies and standards.
- Other relevant tasks as designated by the Global Head of Insider Threat.
Qualifications
What you will need:
- It is essential that you have in-depth experience managing Insider Threat and DLP engineering teams in a global enterprise organisation.
- A solid engineering knowledge of the Microsoft Security stack, in particular Purview DLP, IRM and Defender.
- Relevant Microsoft qualifications in Purview DLP, IRM and Defender.
- In-depth understanding of data protection laws, regulations, and compliance requirements (e.g., GDPR, CCPA, HIPAA).
- Strong analytical problem-solving skills.
- Excellent communication, leadership, and interpersonal skills, with the ability to effectively collaborate and influence stakeholders at all levels of the organization.
- Must be self-motivated and capable of independent work.
Beneficial:
- Previous experience with audits such as SOC2.
- Previous experience of deploying the Microsoft Insider Risk Management module within a global enterprise organisation.
- Industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Privacy Professional (CIPP)
- Experience with CASB and UEBA
