Data Loss Prevention Operations Lead – Outbound Email

can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Job Description:

The Cyber Security Operations team within Global Information Security is seeking a technically skilled and detail-oriented analyst to support Data Loss Prevention (DLP) operations with a focus on outbound email monitoring. This role is instrumental in safeguarding sensitive data, driving operational excellence, and reducing enterprise risk. The successful candidate will proactively monitor DLP rule performance, support investigations, and contribute to the continuous improvement of detection, response, and automation capabilities.

Key Responsibilities:

• Monitor daily DLP detection activity and assess performance, identifying anomalies and escalating as appropriate.

• Maintain and enhance operational playbooks, test plans, and process documentation.

• Provide audit-ready evidence of control adherence and detection rule effectiveness.

• Collaborate with business, technology, and policy teams to validate rule changes and assess operational impacts.

• Analyze trends and metrics to identify risk indicators and drive improvements in rule logic and operational performance.

• Integrate detection rule changes based on business needs, control findings, or incident analysis.

• Provide timely operational insights and recommendations to leadership to support governance and decision-making.

• Provide support for DLP impacting incidents, technical releases and global resources. Time commitment is across time zones, not always within scheduled working hours.

• Contribute to the maturity of the DLP program, including cross-channel alignment and automation opportunities.

Required Qualifications

• Minimum 5 years of experience in information security, or technology

• Proficient in creating, testing, and optimizing DLP detection rules using regex and Exact Data Match (EDM).

• Strong proficiency in writing Splunk queries and interpreting log data to support investigations and rule tuning.

• In-depth understanding of SMTP routing and email security infrastructure, including how policies and detection tools interact with mail flow.

• Deep understanding of the NIST Cybersecurity Framework and regulatory requirements, including regional restrictions.

• Experience with scripting or automation (e.g., Python, PowerShell, Bash) to support process optimization, alert triage, and reporting.

• Familiarity with workflow automation tools (e.g., ServiceNow Flow Designer, Jira Automation, Microsoft Power Automate).

• Proven ability to communicate complex technical findings to both technical and non-technical audiences.

• Demonstrated problem-solving capabilities and ability to operate independently in a fast-paced, high-pressure environment.

• Relevant certifications: Security+, Network+, CEH, CISSP, CCNA, or CCNP.

• Due to the nature of the role and data access, enrollment in Associate Investment Monitoring may be required.

Skills:

• Cyber Security

• Data Privacy and Protection

• Problem Solving

• Process Management

• Threat Analysis

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift:
1st shift (United States of America)

Hours Per Week:
40

Learn more about this role