We are currently hiring for a Insider Threat Engineering Lead with DLP experience on behalf of one of our Insurance clients on a 6-month contract.

Inside IR35

Hybrid- one day a week onsite

Responsibilities:

• Accountability for the technical management and administration of the DLP platform.
• Lead and manage the Insider Threat Engineering team aligned to DLP - a geographically and culturally diverse team of engineers, providing guidance, coaching and support to ensure the successful execution of their responsibilities, and the effective operation of our Insider Threat program.
• Work closely with the L1 Insider Threat Manager, the L3 Insider Threat Engineering Lead - IRM, and Global Head of Insider Threat to develop, implement and refine strategies, rules, policies, and procedures to help prevent data loss and protect sensitive information across the organisation.
• Produce a technical roadmap that is aligned to the overall Cyber Security strategy.
• Ensure that DLP policies are fine-tuned and matured to reduce the number of false positives.
• Collaborate with cross-functional teams, including IT, Cyber Security, HR, legal, and compliance, to define and enforce data protection and insider risk requirements, policies and standards.
• Conduct regular assessments of the Insider Threat Engineering - DLP function to identify areas for continuous improvement.
• Provide regular reports and updates to senior management on the performance and effectiveness of the Insider Threat Engineering team.
• Identify trends and drive requirements aimed at improving and enhancing existing DLP policies, and report this upward through the security management chain.

Experience:

• In-depth experience managing Insider Threat and DLP engineering teams in a global enterprise organisation.
• A solid engineering knowledge of the Microsoft Security stack, in particular Purview DLP, but also IRM and Defender.
• Relevant Microsoft qualifications in Purview DLP, IRM and Defender.
• In-depth understanding of data protection laws, regulations, and compliance requirements (eg, GDPR, CCPA, HIPAA).
• Previous experience with audits such as SOC2.- beneficial
• Previous experience of deploying or managing the Microsoft IRM module within a global enterprise organisation.- beneficial
• Industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Lead (CISM), or Certified Information Privacy Professional (CIPP) - beneficial
• Experience with CASB and UEBA - beneficial.

If this role is of interest or you would like to learn more, please apply now!

Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.