Senior DLP Engineer

Overview

POSITION OVERIVEW

FNF is seeking a Senior Engineer of Data Loss Prevention (DLP) to join the Information Security Office (ISO) in either Jacksonville, FL office or be fully remote. This position will report to the Data Protection Lead. The Senior Engineer will support FNF’s DLP toolsets, Investigation, Secure Data Transmission, and Cloud Data Protection initiatives. An ideal candidate must be fluent in DLP technologies and methodologies, root cause analysis and risks management, security best practices standards, and audit and regulatory frameworks. Zscaler experience required.

LOCATION

• This role can sit 100% remote.

DUTIES & RESPONSIBILITIES

• Develop, deploy, and manage target state DLP technologies, integrations, and policies.
• Manage full lifecycle of design and support evolution of engineering, system administration and daily operations of DLP technologies and services with a focus on continuous service improvement.
• Manage and mature DLP program-related controls, documentation, testing and alignment with risk management framework.
• Assess business requirements of the various lines of business and align solutions to balance enablement of the business with appropriate security controls.
• Collaborate with other security groups to ensure alignment of strategies and ensure control coverage.
• Support creation and documentation of business process aspects of the DLP initiative including process and procedure manuals, training, employee communication, workshops, business unit orientation and on-boarding, and team meetings.
• Work with DLP Response team to deliver measurable metrics reporting, Key Risk Indicators (KRI’s) and Key Performance Indicators (KPI’s) that will be used for reporting to stakeholders and board of directors and continuous improvements for the program.
• Work with various Audit, Compliance and Assessment teams and programs to identify, assess and mitigate operational risks, evaluating the adequacy and effectiveness of the platform, standards, procedures, processes, and internal controls.
• Support adherence to applicable Security Controls, Policies, and Standards; partner with business owners and technology groups to synchronize plans to remediate gaps.
• Participate in afterhours activities, as necessary, such as an on-call rotation and critical incident investigations.

MINIMUM REQUIREMENTS

• BS/MS in Computer Science or Business with emphasis in IT or the equivalent combination of education, training, and work experience .
• 6+ years of Cybersecurity, Security Engineering and/or Governance Risk and Compliance related experiences.
• Experience with Enterprise DLP, UBA, UEBA, CASB, DAR software solutions, design, and implementation.
• Zscaler experience on web policies, PAC files, DLP Engines, etc.
• Familiarity with Proofpoint, Microsoft Security Tools, and/or Varonis.
• Experience building and maintaining custom DLP detection and prevention policies.
• Experience successfully working within a globally distributed/remote organization of team members and key program stakeholders.
• Experience gathering, developing, and documenting business/technical requirements.
• Experience developing and maintaining a DLP development/test lab environment.
• Familiarity with regulatory standards such as PCI, NYDFS, GDPR and/or CCPA.
• Experience taking requirements and translating them to technology through evaluation and implementation.
• Experience analyzing and quickly identifying important DLP events to investigate/remediate.
• Experience writing, reviewing, and maintaining technical program documentation
• Experience mentoring and training peers and junior level resources.
• Experience interfacing with Sr. leadership to present both situation reports and business proposals for strategic change/improvements.

PREFERRED EXPERIENCE

• Relevant cyber security certifications, such as CISSP or CISM
• Experience with SOAR technologies.
• Experience with ServiceNow Security Incident Management.
• Experience writing and maintaining script

COMPENSATION & BENEFITS

This position has the potential to earn compensation in the range of $120,000 - $160,000 annually based on location and job-related factors such as skillset and experience. Actual rate may vary within the range provided, depending on a number of factors, including skillset, experience and location.  The base compensation is one component of the total rewards package offered to our employees, including optional health and welfare insurance (medical/dental/vision/life/disability); paid holidays, vacation, and sick time off; and matching 401(k) plan and matching employee stock purchase plan.