Nesco Resource
Senior Cyber Security Specialist - DLP
Nesco Resource, Kensington Village Mobile Home Park, New York, United States
Our client, a major leader in the software automotive industry, is looking for a Sr. Cybersecurity Operations Analyst for a long-term contract. This position is a hybrid role with 2-3 days in the office in New Hyde Park, NY.
The
Cybersecurity Operations Analyst – DLP
is responsible for leading and managing all aspects of the Data Loss Prevention (DLP) program. This role ensures the continuous development, tuning, and monitoring of DLP policies and technologies to prevent unauthorized data access or transfer across all organizational systems. Key Responsibilities Lead and enhance DLP initiatives organization-wide, including global operations. Monitor, investigate, and respond to internal and external potential data loss events. Administer and tune DLP technologies across on-premise, cloud, SaaS, and endpoint environments. Develop and enforce DLP policies and operational playbooks. Integrate threat intelligence to evolve DLP controls against emerging TTPs. Review new system deployments to ensure DLP compliance. Maintain documentation for incidents and investigations to support audits and improvements. Collaborate with IT and security teams to automate alerts and responses. Provide after-hours support as needed to maintain 24/7 coverage. Monitor DLP alerts across email, web, cloud, and endpoint. Triage and prioritize true positives versus false positives. Investigate user behavior and data movement. Escalate critical issues to Legal, HR, or Security leadership. Contain threats (e.g., isolate devices, disable sharing). Document all actions and outcomes. Recommend coaching or user training. Track and report incident metrics. Support compliance checks and audits. Stay current with threat intelligence and cybersecurity trends. Service Desk and Incident Management Support investigations and resolution of cybersecurity incidents. Skills Security Monitoring Work with internal IT and MSSPs on IDS, SIEM, DLP, AV, EDR. Perform event correlation and threat triage. Apply threat intelligence to improve detection. Communicate effectively with stakeholders. Conduct forensic investigations. Partner with internal and external teams on incident remediation. Ensure thorough documentation and resolution. Core Competencies Focus on Customers
– Put internal/external customer needs at the forefront of decisions and actions. Drive Results
– Set and pursue high performance standards. Develop Self and Others
– Continuously improve knowledge and abilities. Champion Change
– Embrace innovation and support change initiatives. Value Others
– Act with integrity, inclusiveness, and respect. Build Relationships
– Collaborate and build strong working relationships. Qualifications Bachelor's in Computer Science, Information Security, or related field (or equivalent experience). Practical experience in security operations (Monitoring, IR, Network Security). Familiarity with data classification and regulatory standards (e.g., PII, PCI, HIPAA, GDPR). Hands-on experience with DLP platforms such as: Microsoft Purview Forcepoint, McAfee, Digital Client Working knowledge of: Firewalls, VPNs, IDS Antivirus, Secure Web Gateway/Proxy SIEM tools and event correlation Understanding of compliance frameworks: SOX, CCPA, PCI-DSS Specializations Network DLP Policy Development & Tuning Pay rate: $100 - $123 / hour W2 candidates only Direct applicants only No recruiters or agencies please Seniority level
Senior Employment type
Contract Job function
Information Technology
#J-18808-Ljbffr
Cybersecurity Operations Analyst – DLP
is responsible for leading and managing all aspects of the Data Loss Prevention (DLP) program. This role ensures the continuous development, tuning, and monitoring of DLP policies and technologies to prevent unauthorized data access or transfer across all organizational systems. Key Responsibilities Lead and enhance DLP initiatives organization-wide, including global operations. Monitor, investigate, and respond to internal and external potential data loss events. Administer and tune DLP technologies across on-premise, cloud, SaaS, and endpoint environments. Develop and enforce DLP policies and operational playbooks. Integrate threat intelligence to evolve DLP controls against emerging TTPs. Review new system deployments to ensure DLP compliance. Maintain documentation for incidents and investigations to support audits and improvements. Collaborate with IT and security teams to automate alerts and responses. Provide after-hours support as needed to maintain 24/7 coverage. Monitor DLP alerts across email, web, cloud, and endpoint. Triage and prioritize true positives versus false positives. Investigate user behavior and data movement. Escalate critical issues to Legal, HR, or Security leadership. Contain threats (e.g., isolate devices, disable sharing). Document all actions and outcomes. Recommend coaching or user training. Track and report incident metrics. Support compliance checks and audits. Stay current with threat intelligence and cybersecurity trends. Service Desk and Incident Management Support investigations and resolution of cybersecurity incidents. Skills Security Monitoring Work with internal IT and MSSPs on IDS, SIEM, DLP, AV, EDR. Perform event correlation and threat triage. Apply threat intelligence to improve detection. Communicate effectively with stakeholders. Conduct forensic investigations. Partner with internal and external teams on incident remediation. Ensure thorough documentation and resolution. Core Competencies Focus on Customers
– Put internal/external customer needs at the forefront of decisions and actions. Drive Results
– Set and pursue high performance standards. Develop Self and Others
– Continuously improve knowledge and abilities. Champion Change
– Embrace innovation and support change initiatives. Value Others
– Act with integrity, inclusiveness, and respect. Build Relationships
– Collaborate and build strong working relationships. Qualifications Bachelor's in Computer Science, Information Security, or related field (or equivalent experience). Practical experience in security operations (Monitoring, IR, Network Security). Familiarity with data classification and regulatory standards (e.g., PII, PCI, HIPAA, GDPR). Hands-on experience with DLP platforms such as: Microsoft Purview Forcepoint, McAfee, Digital Client Working knowledge of: Firewalls, VPNs, IDS Antivirus, Secure Web Gateway/Proxy SIEM tools and event correlation Understanding of compliance frameworks: SOX, CCPA, PCI-DSS Specializations Network DLP Policy Development & Tuning Pay rate: $100 - $123 / hour W2 candidates only Direct applicants only No recruiters or agencies please Seniority level
Senior Employment type
Contract Job function
Information Technology
#J-18808-Ljbffr