Senior DLP Security Engineer

The Senior DLP Security Engineer will serve as the organization’s subject matter expert (SME) on Data Loss Prevention (DLP), spearheading the development and execution of a comprehensive DLP strategy. This role is essential in ensuring data protection through policy creation, implementation of preventive and detective controls, user behavior monitoring, and collaboration across various teams. The individual will also leverage SecurityDevOps practices and scripting to automate DLP processes and enhance security controls.

Additional Responsibilities

• DLP Program Development: Lead the design and implementation of a cohesive DLP strategy, including data classification, policy creation, standards, and operational best practices to safeguard sensitive information.
• Data Classification and Labeling: Develop and manage data classification schemes and collaborate with data owners to ensure data is accurately labeled according to sensitivity and regulatory requirements.
• Data Discovery and Inventory Management: Use data discovery tools to locate and catalog sensitive data across on-premises and cloud environments, maintaining a dynamic inventory of sensitive data repositories.
• Policy and Rule Configuration: Design, implement, and fine-tune DLP policies and detection rules to minimize false positives and optimize incident management.
• User Behavior Analytics (UBA): Integrate user behavior analytics with DLP tools to detect abnormal data access or potential insider threats, developing models to monitor deviations in sensitive data handling.
• Data Exfiltration Monitoring and Response: Create controls to monitor and detect data exfiltration attempts via multiple channels, working with Incident Response teams to contain and remediate potential data breaches.
• Cloud and SaaS Data Protection: Develop DLP strategies specifically for cloud services and SaaS applications to extend data visibility and control in cloud environments.
• Endpoint and Network DLP: Deploy and manage endpoint and network DLP solutions to ensure data protection on user devices and throughout network channels, such as email and web.
• Data Masking and Tokenization: Implement data masking, encryption, and tokenization techniques to protect sensitive data in non-production environments, ensuring compliance without disrupting business functions.
• Incident Analysis and Root Cause Identification: Analyze DLP incidents to determine root causes and implement preventive measures, collaborating with relevant teams to mitigate future incidents.
• Metrics and Reporting: Define DLP metrics and KPIs to evaluate the program’s effectiveness, regularly reporting findings and trends to leadership to support data security initiatives.
• Compliance Alignment and Auditing: Ensure DLP policies and controls align with industry regulations (e.g., GDPR, CCPA, HIPAA) and participate in compliance audits to assess and enhance the DLP program.
• Third-party and Supply Chain Data Protection: Extend DLP controls to cover third-party and supply chain interactions, working with vendor management and legal teams to ensure sensitive data remains protected when shared externally.
• Automation & Scripting: Leverage scripting languages (e.g., Python, PowerShell) to automate DLP processes, enhance security monitoring, and support the integration of DLP controls within existing systems.
• Security Integration: Utilize SecurityDevOps practices to facilitate the deployment and maintenance of DLP and other security controls within CI/CD pipelines and automated workflows.
• Collaboration with DevOps Teams: Partner with DevOps and engineering teams to ensure DLP requirements are embedded within development and deployment processes.
• Security Controls Optimization: Identify and implement automation opportunities to improve the DLP program’s efficiency in detecting and responding to security incidents.

Experience

• DLP Expertise: Strong understanding of DLP technologies, data classification, exfiltration monitoring, and endpoint/network DLP, particularly with Microsoft Purview and Varonis.
• Policy Development: Experience in creating and managing data protection policies and governance processes, with the ability to adapt to regulatory requirements.
• SecurityDevOps Knowledge: Familiarity with SecurityDevOps principles, CI/CD, and automation within DLP and security processes.
• Scripting Proficiency: Proficient in scripting languages (e.g., Python, PowerShell) to support DLP automation.
• Security Architecture: Ability to create reference security architectures and frameworks that incorporate DLP, SecurityDevOps, and automation.
• Communication and Training: Excellent communication skills to present DLP and security concepts and conduct training on data handling and security requirements.
• Cross-functional Collaboration: Proven ability to build relationships and secure buy-in across multiple teams to advance data protection initiatives.

Preferred Experience

• Security Certifications: Recognized certifications (e.g., CISSP, CCSP, CISM, GSEC) focused on data protection, SecurityDevOps, or cloud security.
• DLP & Security Engineering Experience: 7+ years’ experience as a Security Engineer with 2+ years of demonstrated experience working with DLP technologies; one year of demonstrated experience with SecurityDevOps.
• Project Leadership: Experience leading DLP or security automation projects from design through deployment, with an emphasis on collaboration and cross-functional engagement.

Location Requirements
Atlanta, GA or Gainesville, FL

Our Purpose and Culture

At Gas South, we approach each day knowing we have an opportunity to make a difference in people’s lives. That means helping our customers save money with everyday low rates and treating them with dignity, honesty and respect. It means supporting our employees in their personal and professional lives, and it means we want to make sure our success directly benefits the communities we serve by giving back 5% of profits to support children in need. Through partnerships with non-profits like United Way, Salvation Army, Junior Achievement, Bert’s Big Adventure and many others, we’re proud to help make a difference.  At Gas South our employees bring their boldest ideas and most authentic selves to work, no matter their title, position or background.  We understand that our people are our most valuable assets. So, we treat them that way, with competitive benefits, flexible schedule options, and a fun, casual atmosphere.

Gas South affirms that it is an Equal Opportunity Employer whose actions and practices are consistent with fair employment.  In this regard, Gas South will not discriminate against any employee or applicant with regard to race, color, religion, sex, age, national origin, disability, pregnancy, childbirth or related medical conditions, genetic information, veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.  This policy applies to all terms and conditions of employment including recruiting, hiring, placement, training, promotion, lay-offs, transfers, leave of absence, compensation and termination.

Gas South is committed to fostering a diverse workforce and is an affirmative action employer.

Benefits for full-time employees include:

• Full medical, dental, and vision coverage
• Employer-paid life and disability coverage
• Annual employer contributions of up to 12.5% to your 401k
• Remote work options available based on business needs
• Annual performance incentive is a % of annual benchmark based on position level
• Paid four-week sabbatical every five years
• Opportunities to volunteer in the community
• Education assistance up to $5250 per year