Cyber Threat Intelligence Analyst supporting IT Security team in identifying and mitigating cyber threats. Ensuring network security and protecting company secrets in high - tech environment.
About the role
- Senior Information Security Analyst focused on Data Loss Prevention strategies for protecting organizational data integrity and confidentiality. Collaborating across teams to enhance data security practices within Canada Life.
Responsibilities
- Design, implement, and manage the end-to-end DLP control to protect sensitive data across endpoints, cloud, email, network, and mobile environments according to identified requirements, developed milestones, and approved program.
- Develop and expand DLP policies, rules, and controls to align with evolving business needs, regulatory requirements, and industry best practices.
- Continuously improve and optimize DLP processes to enhance accuracy, reduce false positives, and improve efficiency.
- Support the expansion of DLP capabilities into emerging technologies, and egress channels.
- Follow the DLP incident response process, collaborating with all stakeholders (i.e., HR, Privacy, and Business Units) to investigate, contain, and remediate data loss incidents.
- Develop and maintain DLP incident playbooks and ensure timely response to alerts.
- Provide detailed analysis and reporting on data loss incidents, root causes, and corrective measures.
- Conduct post-incident reviews and recommend improvements to prevent future incidents.
- Establish, enforce, and regularly review DLP policies, standards, and guidelines to ensure comprehensive coverage of sensitive data across the organization.
- Collaborate with Legal, Compliance, Risk, and other departments to ensure DLP policies align with regulatory requirements (e.g., GDPR, PIPEDA, PCI-DSS, HIPAA) and industry frameworks.
- Define, track, and report on key performance indicators (KPIs) and other DLP metrics to measure control effectiveness and risk posture.
- Develop and deliver DLP awareness and training programs to educate employees on the importance of data protection, acceptable use policies, and secure data handling practices.
- Evaluate and implement new DLP technologies, tools, and enhancements to strengthen data protection capabilities.
- Regularly assess the effectiveness of DLP controls through testing, audits, and continuous monitoring. Report identified DLP gaps and drive initiatives to close them.
Requirements
- Bachelor’s degree from an accredited college or university or equivalent experience.
- Minimum five years’ experience as an information technology professional with at least three of those in information security demonstrating the accountabilities as listed above.
- Deep knowledge of Data Loss Prevention (DLP) technologies, frameworks, and platforms—particularly Microsoft Purview , Microsoft Defender for Cloud Apps , and Microsoft Defender for Endpoint .
- Proven experience implementing and managing solutions for Data Loss Prevention , Insider Risk Management , Data Security Posture Management , and Conditional Access .
- Strong understanding of data classification, encryption, regulatory requirements, and standards.
- Proven experience managing DLP incidents, governance forums, and program expansion initiatives.
- Familiarity with cybersecurity frameworks such as NIST, ISO 27001, and CIS Controls.
- Experience collaborating with cross-functional teams and senior stakeholders.
- Exceptional analytical, problem-solving, and investigative skills.
- Holds at least one information security certification or actively working towards at least one security certification (e.g. CISSP, CISM).
Benefits
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development opportunities
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Risk Analyst supporting cyber risk management activities for PokerStars and other brands. Ensuring accurate risk documentation, reporting, and stakeholder engagement in Cluj - Napoca, Romania.
Cyber Security Analyst responsible for governance, risk management, and compliance projects for clients and internally at Cyberlogic. Engaging with clients on project - based work while developing policies and standards.
Analista de segurança de informação supporting the maintenance of data privacy and protection programs at Minsait. Involves audit support, training, and compliance with legislation.
IT Security Analyst assisting in managing technology environments ensuring security compliance. Supporting Brasilseg's platforms with adherence to best practices in software and hardware.
Senior Cybersecurity Analyst applying RMF concepts to enhance cybersecurity for defense program. Conducting risk assessments and developing reports, based in Colorado Springs, CO.
Junior Information Security Analyst assisting federal clients at OCT Consulting with NIST security assessments and risk analyses. Responsible for executing hands - on security control assessments and recommending process improvements.
Journeyman Information Security Analyst providing expertise to federal clients in Security Controls Assessments and Risk Analyses. Responsibilities include technical assessments and recommendations for security improvements.
Information Security Analyst supporting security practices at Silimed, the leading silicone implant manufacturer in Latin America. Ensuring compliance and resilience in critical OT & IT environments.
Security Analyst defending enterprise systems against cyber threats. Supporting threat intelligence and incident response activities in a global biotechnology organization.