Data Loss Prevention Analyst

Stelle nicht auf LinkedIn

🕒 vor 3 Monaten

Jetzt Bewerben

Ähnliche Remote-Jobs finden

E-Mails für Remote-Jobs erhalten

📊 Überprüfen Sie Ihre Lebenslauf-Bewertung für diese Stelle

Verbessern Sie Ihre Chancen auf ein Vorstellungsgespräch, indem Sie Ihre Lebenslauf-Bewertung vor der Bewerbung überprüfen.

Lebenslauf hochladen

Nightfall AI

WebsiteLinkedInAlle Stellen

51 - 200 Mitarbeiter

Gegründet 2018

🔒 Cybersecurity

🤖 Künstliche Intelligenz

☁️ SaaS

💰 €40.000.000 Series B - Nightfall im 2022-08

Cybersecurity • Artificial Intelligence • SaaS

Nightfall AI ist eine KI-native Data-Loss-Prevention (DLP)-Plattform, die die Offenlegung und Exfiltration sensibler Daten über SaaS-Anwendungen, Endpunkte, Browser, E-Mail und generative KI-Tools verhindert. Das Unternehmen kombiniert LLMs, Modelle der Computer Vision und KI-gesteuerte Datenherkunft, um Geheimnisse, PHI, PCI, PII und andere vertrauliche Inhalte in Echtzeit zu erkennen und zu blockieren. Es bietet eine automatisierte Problemlösung und konsistente Richtlinieneinhaltung. Nightfall wird als SaaS-Plattform mit API-Integrationen, schlanken Agenten und Browser-Plug-ins bereitgestellt und richtet sich an Unternehmen, die eine autonome, hochpräzise Schutzmaßnahme gegen Insider-Risiken, Shadow-AI-Lecks und ausgeklügelte Exfiltrationsversuche suchen.

Beschreibung

• Monitor and analyze DLP alerts across endpoint, browsers, SaaS, and AI applications to identify potential data exfiltration events, policy violations, and insider threats • Conduct real-time triage of security alerts, distinguishing between true positives and false positives using behavioral context, data lineage analysis and sensitive findings • Perform detailed forensic investigations into data loss incidents, analyzing user activity, data movement patterns, and exfiltration vectors (email, web uploads, removable storage, print, source code exfiltration, desktop apps, GenAI apps etc.) • Understand and follow incident response processes and escalation procedures, coordinating with customer incident response teams on high-severity cases • Document investigation findings, evidence trails, and remediation recommendations with clear, actionable reports • Configure and maintain DLP policies based on customer data classification schemes, compliance requirements (GDPR, HIPAA, PCI-DSS, SOX), and business objectives • Continuously tune detection rules and sensitivity thresholds to reduce false positives while maintaining high detection accuracy • Identify patterns in alert data to recommend new use cases, detection methods, and policy improvements • Serve as a trusted technical advisor and subject matter expert on data protection, DLP best practices, and insider threat management • Administer Nightfall's DLP solution including agent deployment, policy configuration, integration setup, and performance monitoring • Stay informed about emerging insider threat trends, data exfiltration techniques, and adversary tactics, techniques, and procedures (TTPs).

🎯 Anforderungen

• 3-5 years of experience in information security, with at least 2 years focused on data loss prevention (DLP), insider threat, or data protection technologies • Hands-on experience with DLP tools (e.g., Forcepoint, Symantec, McAfee, Digital Guardian, Microsoft Purview, or other enterprise DLP solutions) • Proven DLP administration skills: configuring policies, tuning detection rules, managing agents, generating reports, and performing incident investigations • Strong understanding of data classification methodologies, sensitive data types (PII, PHI, PCI, IP, credentials), and regex/pattern matching for content inspection • Experience with incident response processes, forensic investigation techniques, and security event escalation workflows • Knowledge of compliance frameworks and regulations: GDPR, HIPAA, PCI-DSS, SOX, and their data protection requirements • Strong analytical skills - ability to analyze complex, multivariate security problems and use systematic approaches to reach resolution • Experience with SIEM platforms, SOAR tools, or log analysis software (Splunk, ELK, Tines etc) • Familiarity with User and Entity Behavior Analytics (UEBA) and behavioral risk indicators • Understanding of endpoint security, including macOS, Windows, and browser platforms • Knowledge of SaaS security, CASB solutions, and cloud application architectures (Office 365, Google Workspace, Slack, GitHub, Salesforce, etc.) • Basic scripting skills (Python, PowerShell, Bash) for automation and data analysis. • Prior experience with Nightfall, Cyberhaven, Code42, DTEX, Proofpoint, or similar DLP/insider risk platforms • Background in Security Operations Center (SOC) operations, threat hunting, or blue team activities • Knowledge of machine learning/AI-based detection systems and how they improve upon traditional pattern-matching approaches • Understanding of API security, OAuth flows, and integration architectures for SaaS platforms • Contributions to security community: blog posts, speaking engagements, open-source projects, or threat research.

🏖️ Vorteile

• Employee compensation will be determined based on interview performance, level of experience, specialization of skills, and market rate. During the offer discussion, your recruiter will review the finalized base salary, bonus (for applicable roles), benefits & perks, and stock options as they’ll be reflected in the offer letter.