About the Role We are seeking a Data Protection Engineer to lead strategic efforts in preventing data exfiltration, governing cloud security, and optimizing CASB solutions. This role is pivotal in ensuring sensitive data remains secure across cloud and on-prem environments while aligning with industry regulations and internal security policies. The ideal candidate will take a proactive and strategic approach to identifying, mitigating, and preventing data loss risks, focusing on Cloud Access Security Broker (CASB) solutions, data governance, and exfiltration prevention strategies. Key Responsibilities • Data Security Strategy & Governance o Develop and implement a strategic roadmap for data protection, loss prevention, and exfiltration controls. o Establish policies, standards, and guidelines for data classification, encryption, and access control. o Define key risk indicators (KRIs) and key performance indicators (KPIs) to measure data security effectiveness. • Data Exfiltration Prevention o Identify, assess, and mitigate data exfiltration risks across endpoints, cloud, and SaaS platforms. o Oversee Data Loss Prevention (DLP) policies and workflows to prevent unauthorized data access and movement. o Conduct threat modeling to detect potential insider threats and external data breaches. • CASB & Cloud Security Oversight o Lead the design, implementation, and optimization of CASB solutions to enforce cloud security policies. o Monitor shadow IT usage, unauthorized cloud storage, and SaaS applications. o Define and enforce CASB policies for data access, encryption, and anomaly detection. • Risk & Compliance Alignment o Ensure compliance with GDPR, CCPA, NIST, ISO 27001, SOC 2, and other data protection regulations. o Collaborate with legal, compliance, and IT teams to ensure data security measures meet regulatory requirements. o Participate in security audits and risk assessments related to data protection. • Collaboration & Advisory o Work with Security Operations, IT, and DevOps teams to strengthen data protection controls. o Provide strategic guidance on secure data transfer, access management, and encryption. o Act as a subject matter expert (SME) for data security best practices and emerging threats. Required Qualifications • 5+ years of experience in data protection, cloud security, and exfiltration prevention. • Strong expertise in Data Loss Prevention (DLP), CASB solutions (e.g., Proofpoint, Microsoft Defender, Varonis), and data security frameworks. • Deep understanding of data exfiltration tactics, insider threat detection, and cloud security controls. • Experience with SIEM, UEBA, and Threat Intelligence platforms for monitoring data-related security threats. • Familiarity with encryption standards, tokenization, and data masking techniques. • Ability to assess and improve cloud security configurations in AWS, Azure, and GCP. • Strong analytical and problem-solving skills, with a strategic mindset. Preferred Qualifications • Certifications: CISSP, CISM, CCSP, CIPP, CEH, or equivalent. • Hands-on experience with machine learning-based anomaly detection for data protection. • Experience with Zero Trust architecture and identity-based data security. Why Join Us? • Work on cutting-edge data security initiatives in a forward-thinking organization. • Influence strategic decisions around cloud security, CASB, and data exfiltration controls. • Collaborate with top security professionals in an innovative and security-first culture. • Competitive salary, benefits, and opportunities for continuous learning and growth. #J-18808-Ljbffr