Technology Risk Data Loss Prevention (Dallas, TX)

Job Description

Goldman Sachs Technology Risk leads threat and risk management initiatives thathelp toprotect the firm and our clients from information and cyber security areseekinga highly motivated and skilled Data Protection & Data Loss Prevention (DLP) Specialist to join our cybersecurity team. This role is critical in safeguarding our organizations sensitive information from unauthorized access misuse or leakage. The ideal candidate willpossessa strong understanding of data protection principles regulatory compliance andexperience with DLP technologies.

In this position you will collaborate with engineers andsecurity risk professionalsto develop advanced cyber-basedbehavioraldetections and other surveillance mechanisms aimed atidentifyinganomalous behaviorand preventing data leakage threats. You will also partner with colleagues across various departments including Compliance Legal Human Capital Management (HCM) the Office of Global Security InternalAuditand otherkey stakeholders toleverageall available resources in advancing the program.

Roles and Responsibilities

• Develop implement andmaintaincomprehensive data protection and DLP strategies policies and procedures to prevent data breaches and ensure compliance with relevant regulations (e.g. GDPRNIST).
• Configure deploy and manage DLP tools and technologies ( Microsoft Purview Proofpoint) across various environments including endpoints networks email and cloud platforms.
• Design implement and maintain DLP policies rules and workflows across various platforms (endpoint network cloud).
• Monitor analyze and respond to DLP alerts and incidentsperformtriage investigation and remediation to mitigaterisksandimprovedetection accuracy.
• Conduct regular audits of data access and usage patternsidentifyingvulnerabilitiesandrecommendingnecessary controls to protect sensitive data.
• Prepare update and deliver documentationpertaining tosolutions including configuration details.
• Collaborate withtechnology legal compliance and business teams to understand data flows classify sensitive information and integrate DLP solutions with existing security systems (e.g. SIEM EDR).
• Assistin the development ofsecurity awareness training and education sessions to employees on data protection best practices and DLP policiesto reduce insider threats.
• Provide subject matterexpertiseon data protection and DLP staying current with emerging threats technologies and regulatory changes.
• Generate reports and metrics on DLP programandpolicyeffectiveness providing insights and recommendations for continuous improvement.
• Assistin the development and enhancement of securitycontrolsframeworks andparticipatein incident response activities.
• Engagewith stakeholders to present risks and recommendations that support informed decision-making.

Basic Qualifications

• Experience in information security with a focus on data protection and Data Loss Prevention (DLP).
• Proficiencyin administering andoptimizingleading DLP solutions (e.g. Symantec DLP McAfee DLP Forcepoint DLP Microsoft Purview ZscalerProofpoint).
• Goodunderstanding of data protection regulations and compliance standards such as GDPRand NIST.
• Experience with data classification encryption masking and tokenization technologies.
• Knowledge of network security principles endpoint security (EDR) and Security Information and Event Management (SIEM) tools.
• Familiarity with cloud security and data protection strategies.
• Strong written andverbalcommunication skills capable of explaining complex technical ideas clearly to both specialized and general audiences.
• Excellent problem solving project management and analytical skills.

Preferred Qualifications

• Bachelors degree in computer science Information Technology Cybersecurity or a related field
• Relevant security certifications (e.g. CISSP CISM CEH CompTIA Security) are highly desirable

Benefits
Goldman Sachs is committed to providing our people with valuable and competitive benefits and wellness offerings as it is a core part of providing a strong overall employee experience. A summary of these offerings which are generally available to active non-temporary full-time and part-time US employees who work at least 20 hours per week can be foundhere.