S
DLP Technical Expert
Socium - Teams Done Differently
Doha, Doha Municipality, Qatar · عقد
كن أول من يتقدم بطلب
- خبرة
- أي
- مرتب
- —
- الوظائف الشاغرة
- 1
- تم النشر
- • 3 أفراد
- وضع العمل
- في المكتب
- سيرة ذاتية
- مطلوب للتقديم
مكان عملك
المسمى الوظيفي
Job Location and Contract Duration
This role is based in Doha, Qatar and requires onsite presence. The initial contract duration is six months.
Additional Information
- Preference is given to candidates currently residing in Qatar; visa and medical sponsorship are provided for them.
- Candidates from outside Qatar may apply, but relocation expenses such as airfare and accommodation will not be covered.
Key Responsibilities
- Analyze the existing Data Loss Prevention (DLP) architecture, policies, incident frequency, and enforcement weaknesses to develop an Exfiltration Coverage Matrix that categorizes data types, channels, exfiltration vectors, and control measures.
- Focus on prioritizing risky exfiltration methods such as web uploads (POST), personal email usage, unauthorized SaaS or paste sites, removable media, encrypted archives, and significant data extraction behaviors.
- Develop and implement DLP policies and rules across multiple vectors, including endpoints, email, web, SaaS platforms, and networks; ensure detection of sensitive data, contextual controls, enforcement mechanisms, and escalation procedures.
- Design test scenarios and conduct controlled pilot programs; adjust configurations to minimize false positives and negatives; manage exceptions and establish policy precedence.
- Integrate DLP telemetry with Security Operations Center (SOC) tools like SIEM and case management systems; establish severity models and create triage runbooks along with KPIs reporting mechanisms.
- Generate thorough technical documentation and provide training sessions for administrators and SOC staff to enable smooth independent management upon project completion.
Required Experience and Skills
- Extensive experience in engineering DLP policies across endpoints, email, web, and SaaS channels within hybrid IT environments.
- In-depth understanding of data exfiltration threat vectors, contemporary evasion techniques, and strategic deployment of controls.
- Demonstrated history of implementing DLP solutions in financial or governmental sectors, including capabilities for evidence-grade logging and controlled change management.