에스
DLP Technical Expert
Socium - Teams Done Differently
Doha, Doha Municipality, Qatar · 계약
가장 먼저 지원하세요
- 경험
- 어느
- 샐러리
- —
- 채용 공고
- 1
- 게시됨
- 3시간전
- 작업 모드
- 사무실에서
- 재개하다
- 신청 시 필수 사항
당신이 일하게 될 곳
직무 설명
Job Location and Contract Duration
This role is based in Doha, Qatar and requires onsite presence. The initial contract duration is six months.
Additional Information
- Preference is given to candidates currently residing in Qatar; visa and medical sponsorship are provided for them.
- Candidates from outside Qatar may apply, but relocation expenses such as airfare and accommodation will not be covered.
Key Responsibilities
- Analyze the existing Data Loss Prevention (DLP) architecture, policies, incident frequency, and enforcement weaknesses to develop an Exfiltration Coverage Matrix that categorizes data types, channels, exfiltration vectors, and control measures.
- Focus on prioritizing risky exfiltration methods such as web uploads (POST), personal email usage, unauthorized SaaS or paste sites, removable media, encrypted archives, and significant data extraction behaviors.
- Develop and implement DLP policies and rules across multiple vectors, including endpoints, email, web, SaaS platforms, and networks; ensure detection of sensitive data, contextual controls, enforcement mechanisms, and escalation procedures.
- Design test scenarios and conduct controlled pilot programs; adjust configurations to minimize false positives and negatives; manage exceptions and establish policy precedence.
- Integrate DLP telemetry with Security Operations Center (SOC) tools like SIEM and case management systems; establish severity models and create triage runbooks along with KPIs reporting mechanisms.
- Generate thorough technical documentation and provide training sessions for administrators and SOC staff to enable smooth independent management upon project completion.
Required Experience and Skills
- Extensive experience in engineering DLP policies across endpoints, email, web, and SaaS channels within hybrid IT environments.
- In-depth understanding of data exfiltration threat vectors, contemporary evasion techniques, and strategic deployment of controls.
- Demonstrated history of implementing DLP solutions in financial or governmental sectors, including capabilities for evidence-grade logging and controlled change management.