Job Description

Regular or Temporary:

Regular

Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)



Please review the following job description:

As a Senior Data Protection Engineer, you will help implement Data Loss Prevention (DLP) and Data Protection solutions for protecting sensitive information from improper access, use and movement across data transmission channels. As part of broader Cybersecurity efforts to protect data, you will support Data Protection across a matrix organization. You will execute individual project priorities, deadlines and deliverables, and be involved in the development, testing, deployment and operationalization of DLP and Data Protection solutions.

As a DLP Engineer, you'll be a key player in delivering against the security roadmap and efforts addressing Truist needs for maturing DLP and overall Data Protection capabilities. Persons in this role must be versatile and enthusiastic in addressing new problems as we continue to push risk management forward. Senior Engineers will work with virtually all businesses and with a wide variety of other teams throughout the company.

Job Responsibilities
Drive tasks to completion for efforts associated with DLP and Data Protection projects and initiatives; where needed, lead associated task efforts for small groups
Build and strengthen technical controls for protection against data exfiltration
Define, configure and test complex configurations to enable DLP policy implementations through various on premises and SaaS solutions
Help define DLP rules and policies for new cloud access security broker (CASB) environment
Work closely with other areas of Cyber Security to deliver comprehensive security capabilities. These group include, but are not limited to: Cloud Security, SOC; Data Life Cycle Management
Support troubleshooting activities and provide SME to production support teams in stabilizing DLP systems and executing root cause analysis
Coordinate and prepare technical documentation for new/upgraded systems or components
Test and document recurring workflow as standard operating procedures
Identify key metric indicators for trend analysis
Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Bachelors degree and eight years of experience in systems engineering or administration or an equivalent combination of education and work experience

Deep specialized and/or broad functional knowledge in applied enterprise information security technologies including but not limited to firewalls, intrusion detection/prevention systems, network operating systems, identity management, database activity monitoring, encryption, content filtering, and Mainframe security CISSP Certification

Previous experience in leading complex IT projects

Preferred Qualifications:

Bachelor's Degree in computer science, information systems, engineering, data science, or a related field, or equivalent practical experience
3+ years' experience working with Cybersecurity DLP, data classification or incident response (SOC) toolsets ForcePoint, ProofPoint, Symantec, McAfee solutions for endpoint DLP, CASB, and/or email security gateways.
2+ years of Technology experience system administration, application development, system integration, database design/development, etc. with understanding of Boolean logic, Regular Expressions and/or SQL
Knowledge of Data Protection, Data Governance, or data lifecycle methodologies and concepts
Knowledge of data architecture, database technologies, and cloud services
Self-motivated and results-oriented
Excellent interpersonal and communication skills
Strong track record for dealing well with ambiguity, prioritizing needs, and delivering measurable results in an agile, fast-paced environment
Ability to both work independently on tasks with minimal supervision and collaborate effectively in a geographically diverse team environment
Experience with data and business requirements gathering/analysis and translation to technology execution
Experience with SharePoint, Archer, ServiceNow, and/or Agile - a plus
Demonstrated ability for sound problem resolution, judgment and decision-making skills

2+ years of experience with Cybersecurity framework like NIST, COBIT, ISA, and ISO
Excellent organizational, interpersonal, and project management skills
Excellent communication skills both written and oral.
Knowledge of laws and regulations that impact SunTrust (e.g., FCRA, GLBA, UDAAP, Dodd-Frank, GDPR, CCPA) - a plus
One or more leading Cybersecurity certifications like Certified Cloud Security Professional (CCSP), Certified Ethical Hacker (CEH), and Certified Information Systems Security Professional (CISSP) a plus