DLP and Insider Threat Program数据安全运营工程师-Hangzhou
lazada
Team and Role Introduction:
Alibaba International Digital Commerce (AIDC) aims to further accelerate global e-commerce growth by leveraging its parent company's extensive experience and expertise in digital commerce. As a dedicated platform for international online retail, AIDC is poised to empower entrepreneurs, brands, and consumers alike with innovative digital solutions, enhancing the overall shopping experience across borders. AIDC is seeking someone passionate about cybersecurity operations, specifically focusing on Data Loss Prevention (DLP) and Insider Threat Programs. The ideal candidate will play a crucial role in defining, monitoring, and responding to DLP alerts and insider threats, while also handling general SecOps tasks. If handling cyber threats, playing with cutting-edge technologies, and working with talented professionals excites you, this might be the right place for you.
Responsibilities:
-Lead the implementation and operation of DLP solutions to monitor and protect sensitive data.
-Develop and manage the Insider Threat Program to identify and mitigate internal risks.
-Handle priority security alerts related to DLP and insider threats from various security tools and reports (phishing emails, malware, intrusion, data leaks, vulnerabilities, etc.) in a timely manner.
-Investigate incidents and guide colleagues in incident handling, specifically focusing on DLP and insider threats.
-Find new patterns/anomalies and translate findings to improve detection capabilities by creating and/or fine-tuning alerts on our big-data SIEM and respective DLP tools.
-Automate and develop tools/scripts to enhance detection and response capabilities (Python, SOAR, etc.).
-Own, administer, and manage security engineering projects with a focus on DLP and insider threat mitigation.
-Write and maintain Security Operations playbooks and standard operating procedures.
-Participate in Blue/Purple team exercises to test and improve monitoring and response capabilities.
-Conduct root cause analysis and publish findings in the form of reports and metrices.
Alibaba International Digital Commerce (AIDC) aims to further accelerate global e-commerce growth by leveraging its parent company's extensive experience and expertise in digital commerce. As a dedicated platform for international online retail, AIDC is poised to empower entrepreneurs, brands, and consumers alike with innovative digital solutions, enhancing the overall shopping experience across borders. AIDC is seeking someone passionate about cybersecurity operations, specifically focusing on Data Loss Prevention (DLP) and Insider Threat Programs. The ideal candidate will play a crucial role in defining, monitoring, and responding to DLP alerts and insider threats, while also handling general SecOps tasks. If handling cyber threats, playing with cutting-edge technologies, and working with talented professionals excites you, this might be the right place for you.
Responsibilities:
-Lead the implementation and operation of DLP solutions to monitor and protect sensitive data.
-Develop and manage the Insider Threat Program to identify and mitigate internal risks.
-Handle priority security alerts related to DLP and insider threats from various security tools and reports (phishing emails, malware, intrusion, data leaks, vulnerabilities, etc.) in a timely manner.
-Investigate incidents and guide colleagues in incident handling, specifically focusing on DLP and insider threats.
-Find new patterns/anomalies and translate findings to improve detection capabilities by creating and/or fine-tuning alerts on our big-data SIEM and respective DLP tools.
-Automate and develop tools/scripts to enhance detection and response capabilities (Python, SOAR, etc.).
-Own, administer, and manage security engineering projects with a focus on DLP and insider threat mitigation.
-Write and maintain Security Operations playbooks and standard operating procedures.
-Participate in Blue/Purple team exercises to test and improve monitoring and response capabilities.
-Conduct root cause analysis and publish findings in the form of reports and metrices.
Confirm your E-mail: Send Email
All Jobs from lazada