Senior DLP Analyst

Chennai - India

Monthly Salary: Not Disclosed

Posted on: 2 hours ago

Vacancies: 1 Vacancy

Job Summary

Who Youll Work With

In this role you will act as a central pillar of Aristas security posture collaborating closely with Legal and HR to navigate sensitive investigations and insider risk cases while partnering with IT and Endpoint Engineering to manage policy deployments across macOS Windows and Linux. Youll work alongside Software Engineering and R&D to deeply understand and protect their source code workflows ensuring that DLP controls provide robust security without hindering innovation. Furthermore you will sync with the SOC and Security Automation teams to integrate alerts into SIEM/SOAR platforms and provide Executive Leadership with high-level reporting on data-at-risk metrics and the overall maturity of the data protection program.

What Youll Do

Key Responsibilities

Alert Monitoring & Incident Response

Monitor and analyze DLP alerts across endpoint browsers SaaS and AI applications to identify potential data exfiltration events policy violations and insider threats.
Conduct real-time triage of security alerts distinguishing between true positives and false positives using behavioral context data lineage analysis and sensitive findings.
Perform detailed forensic investigations into data loss incidents analyzing user activity data movement patterns and exfiltration vectors (email web uploads removable storage source code exfiltration GenAI apps etc.).
Coordinate incident response and escalation procedures working closely with security leadership on high-severity cases.
Document investigation findings evidence trails and remediation recommendations with clear actionable reports.

Policy Development & Optimization

Design implement and maintain enterprise DLP technology solutions across endpoints servers cloud and network environments.
Configure and maintain DLP policies based on Aristas data classification schemes and compliance requirements (GDPR HIPAA PCI-DSS SOX).
Continuously tune detection rules and sensitivity thresholds to reduce false positives while maintaining high detection accuracy.
Establish baselines for normal user behavior by role and department to improve anomaly detection and UEBA (User and Entity Behavior Analytics) efficacy.

Data Discovery & Platform Administration

Lead data discovery and classification efforts using Aristas DLP and EDR tools (e.g Crowdstrike Falcon etc).
Troubleshoot technical issues with endpoint agents browser extensions and SaaS integrations.

Reporting & Strategy

Serve as a subject matter expert (SME) for Aristas DLP tools and case management systems.
Compile executive-level reports featuring key performance indicators: detection accuracy mean time to respond (MTTR) and data-at-risk metrics.
Stay informed about emerging insider threat trends and adversary tactics (TTPs) to inform program maturity.

Qualifications :

Minimum 5 years of experience in information security with a primary focus on Data Loss Prevention (DLP) insider threat or data protection.
Technical Expertise: Deep hands-on experience with enterprise DLP and DSPM tools (e.g. Endpoint Protector CyberHavenetc.)
Forensic Mindset: Proven ability to conduct complex investigations analyze data movement and interpret system logs.
Data Governance: Strong understanding of data classification methodologies and sensitive data types (PII PHI PCI IP and source code).
Compliance Knowledge: Familiarity with frameworks such as NIST CSF GDPR SOC2 Type 1 & II and PCI-DSS.
Education: Bachelors degree in Cybersecurity Computer Science Information Security or a related field.

Technical Proficiency

Platforms: Deep understanding of endpoint security across macOS Windows & Linux
Cloud/SaaS: Knowledge of SaaS security and cloud architectures (O365 Google Workspace Slack GitHub Box Egnyte Salesforce).
Tools: Experience with SIEM platforms (Falcon SIEM Sumologic or similar) and SOAR tools (Tines Palo Alto XSOAR or similar).
Automation: Basic scripting skills or use of augmentation or any other platform for automating repetitive tasks and data analysis.

Additional Information :

Arista stands out as an engineering-centric company. Our leadership including founders and engineering managers are all engineers who understand sound software engineering principles and the importance of doing things right.

We hire globally into our diverse team. At Arista engineers have complete ownership of their projects. Our management structure is flat and streamlined and software engineering is led by those who understand it best. We prioritize the development and utilization of test automation tools.

Our engineers have access to every part of the company providing opportunities to work across various domains. Arista is headquartered in Santa Clara California with development offices in Australia Canada India Ireland and the US. We consider all our R&D centers equal in stature.

Join us to shape the future of networking and be part of a culture that values invention quality respect and fun.

Remote Work :

Employment Type :

Full-time

Who Youll Work WithIn this role you will act as a central pillar of Aristas security posture collaborating closely with Legal and HR to navigate sensitive investigations and insider risk cases while partnering with IT and Endpoint Engineering to manage policy deployments across macOS Windows and Lin...

Who Youll Work With

What Youll Do

Key Responsibilities

Alert Monitoring & Incident Response

Monitor and analyze DLP alerts across endpoint browsers SaaS and AI applications to identify potential data exfiltration events policy violations and insider threats.
Conduct real-time triage of security alerts distinguishing between true positives and false positives using behavioral context data lineage analysis and sensitive findings.
Perform detailed forensic investigations into data loss incidents analyzing user activity data movement patterns and exfiltration vectors (email web uploads removable storage source code exfiltration GenAI apps etc.).
Coordinate incident response and escalation procedures working closely with security leadership on high-severity cases.
Document investigation findings evidence trails and remediation recommendations with clear actionable reports.

Policy Development & Optimization

Design implement and maintain enterprise DLP technology solutions across endpoints servers cloud and network environments.
Configure and maintain DLP policies based on Aristas data classification schemes and compliance requirements (GDPR HIPAA PCI-DSS SOX).
Continuously tune detection rules and sensitivity thresholds to reduce false positives while maintaining high detection accuracy.
Establish baselines for normal user behavior by role and department to improve anomaly detection and UEBA (User and Entity Behavior Analytics) efficacy.

Data Discovery & Platform Administration

Lead data discovery and classification efforts using Aristas DLP and EDR tools (e.g Crowdstrike Falcon etc).
Troubleshoot technical issues with endpoint agents browser extensions and SaaS integrations.

Reporting & Strategy

Serve as a subject matter expert (SME) for Aristas DLP tools and case management systems.
Compile executive-level reports featuring key performance indicators: detection accuracy mean time to respond (MTTR) and data-at-risk metrics.
Stay informed about emerging insider threat trends and adversary tactics (TTPs) to inform program maturity.

Qualifications :

Minimum 5 years of experience in information security with a primary focus on Data Loss Prevention (DLP) insider threat or data protection.
Technical Expertise: Deep hands-on experience with enterprise DLP and DSPM tools (e.g. Endpoint Protector CyberHavenetc.)
Forensic Mindset: Proven ability to conduct complex investigations analyze data movement and interpret system logs.
Data Governance: Strong understanding of data classification methodologies and sensitive data types (PII PHI PCI IP and source code).
Compliance Knowledge: Familiarity with frameworks such as NIST CSF GDPR SOC2 Type 1 & II and PCI-DSS.
Education: Bachelors degree in Cybersecurity Computer Science Information Security or a related field.

Technical Proficiency

Platforms: Deep understanding of endpoint security across macOS Windows & Linux
Cloud/SaaS: Knowledge of SaaS security and cloud architectures (O365 Google Workspace Slack GitHub Box Egnyte Salesforce).
Tools: Experience with SIEM platforms (Falcon SIEM Sumologic or similar) and SOAR tools (Tines Palo Alto XSOAR or similar).
Automation: Basic scripting skills or use of augmentation or any other platform for automating repetitive tasks and data analysis.

Additional Information :

Join us to shape the future of networking and be part of a culture that values invention quality respect and fun.

Remote Work :

Employment Type :

Full-time

Key Skills

Apply Now

About Company

Arista Networks

Arista Networks is an industry leader in data-driven, client-to-cloud networking for large data center, campus and routing environments. What sets us apart is our relentless pursuit of innovation. We leverage the latest advancements in cloud computing, artificial intelligence, and sof ... View more

View Profile View Profile

AI AutoApply

Apply to 100+ jobs with one click