Data Security Analyst in Sterling, VA at Jobs | Lyneer Staffing

Date Posted: 8/6/2019

Job Snapshot

Job Description

Lyneer Staffing Solutions is seeking a Data Security Analyst for a leader in the Media and Entertainment industry. 



Data Security Analyst Daily Duties:


• Support data security initiatives across both InfoSec Department and Privacy Office 
• Respond to day-to-day requests from Data Security, Information Security Team, and the CISO such as advising on enterprise-wide initiatives
• Design, implement, and support GDPR/CCPA compliance and data security controls for Discovery Global 
• Monitor and analyze the results, trends, patterns, and events from Data Security and Privacy Compliance Tools (e.g., SAS, OneTrust, BigID, etc.) in addition to other tools (e.g., Splunk/QRadar) to enforce Data Privacy and Security requirements 
• Proactively recognizes potential data security and compliance issues through reviews and analyses 
• Develop and maintain Data Flow Diagrams for new and critical business and IT processes and services 
• Perform periodic Data Discovery Scan and mapping for Critical Discovery Data (e.g., PCI, GDPR/CCPA, etc.) and work with data owners to identify gaps and propose solutions. 
• Develop and implement data security standard operating procedure (SOP) and enforce requirements. 
• Provide data security requirements and guidance on secure software development and deployment 
• Evaluate, recommend, and implement data security solutions through open-source and COTS tools 
• Coordinate with business and IT teams, as a SME/InfoSec liaison, supporting data security initiatives 
• Recommend, install, manage, and maintain (e.g., policy, rules, and tuning) Data Security/Privacy Tools (i.e., PET) when deployed and as appropriate 
• Assist with implementation of counter-measures or mitigating data security controls as necessary 


 


About You?


• Bachelor’s degree from an accredited university in business or IT security related discipline 
• 3+ years of progressive experience with increasing responsibilities within Information Security Dept. (e.g., Cyber SecOps, Security Architecture & Engineering, and/or Data Security/Forensic Analysis) 
• An In-depth understanding of privacy compliance programs such as General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Payment Card Industry Data Security Standard (PCI-DSS), etc. 
• Strong working knowledge and experience with data security compliance, control design, and processes 
• Expert-level knowledge of data security and privacy enhancing technologies and tools 
• 2+ years of professional experience, supporting Cybersecurity Operation program(s) using security solutions such as enterprise data loss prevention tools, data encryption technologies, SIEM, EDR, etc. 
• Must have a strong foundation of Network and Security skills, fundamental knowledge of Windows, Linux operating systems, networking protocols and network traffic analysis, etc. 
• Independent tasking and project completion with little supervision is a must 
• Excellent analytical and problem-solving skills as well as interpersonal skills to interact with users, team members and senior management 
• Investigates, interprets, and responds to technical and/or complex IT security data 
• Demonstrated ability to work within matrixed resources in a team environment. Possesses strong organizational, time management and diplomacy skills 
• Working knowledge and experience in creating policies and technical documents (SOPs) as necessary 


• Desirable certifications include CIPP (US/E), CIPT, CIPM, CISSP, GCFE/GCFA, GCIH, CEH, OSCP, CHFI 
• 2+ years of data security or security architecture and engineering experience 
• 1+ years of security experience with cloud security environments 
• Working knowledge with digital forensic tools such as Encase, SIFT Workstation, etc. 
• Working knowledge and experience in leading and performing data security, data privacy discussions, reviews, and IT/security audits 
• Working knowledge and experience in developing and reporting performance and risk metrics (e.g., KPIs/KRIs – Status Reporting and Dashboard for senior management)

Job Requirements



• Bachelor’s degree from an accredited university in business or IT security related discipline 
• 3+ years of progressive experience with increasing responsibilities within Information Security Dept. (e.g., Cyber SecOps, Security Architecture & Engineering, and/or Data Security/Forensic Analysis) 
• An In-depth understanding of privacy compliance programs such as General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Payment Card Industry Data Security Standard (PCI-DSS), etc. 
• Strong working knowledge and experience with data security compliance, control design, and processes 
• Expert-level knowledge of data security and privacy enhancing technologies and tools 
• 2+ years of professional experience, supporting Cybersecurity Operation program(s) using security solutions such as enterprise data loss prevention tools, data encryption technologies, SIEM, EDR, etc. 
• Must have a strong foundation of Network and Security skills, fundamental knowledge of Windows, Linux operating systems, networking protocols and network traffic analysis, etc. 
• Independent tasking and project completion with little supervision is a must 
• Excellent analytical and problem-solving skills as well as interpersonal skills to interact with users, team members and senior management 
• Investigates, interprets, and responds to technical and/or complex IT security data 
• Demonstrated ability to work within matrixed resources in a team environment. Possesses strong organizational, time management and diplomacy skills 
• Working knowledge and experience in creating policies and technical documents (SOPs) as necessary 


• Desirable certifications include CIPP (US/E), CIPT, CIPM, CISSP, GCFE/GCFA, GCIH, CEH, OSCP, CHFI 
• 2+ years of data security or security architecture and engineering experience 
• 1+ years of security experience with cloud security environments 
• Working knowledge with digital forensic tools such as Encase, SIFT Workstation, etc. 
• Working knowledge and experience in leading and performing data security, data privacy discussions, reviews, and IT/security audits 
• Working knowledge and experience in developing and reporting performance and risk metrics (e.g., KPIs/KRIs – Status Reporting and Dashboard for senior management)