Remote Data Protection Consultant

Summary

The job is for a Data Protection Consultant to develop a Data Protection Program Framework and Roadmap for a 4-month remote project, potentially requiring onsite travel.

Requirements

• 5+ years data protection experience
• 1 - 3 years overall experience in Security Engineering and Architecture
• 2+ years data protection program development / support experience
• Working knowledge of data classification and data security, data encryption and access control
• Knowledge of security frameworks (e.g., NIST CSF, ISO 27001, etc.)
• Knowledge of leading industry data protection practices
• Data loss prevention technologies experience (e.g., MS365 email DLP, Microsoft Information Protection, Vormetric, Thales, Varonis, BigID, etc.)
• Ability to articulate business outcomes from technical controls
• Ability to interpret and leverage existing documentation
• Experience working across multiple levels, functions and stakeholders in a large enterprise setting
• Working knowledge of the characteristics of Big Data; Structured Data Unstructured Data
• Collaborative team worker – both in person and virtually using MS Teams or similar
• Excellent project management and organizational skills with attention to detail
• Excellent documentation skills; demonstrated proficiency in Microsoft Office including Word, Excel and PowerPoint
• Ability to work as liaison between business and information security/information technology
• Flexibility to accommodate working across different time zones
• Excellent interpersonal communication skills with strong spoken and written English
• Business outcomes mindset
• Solid balance of strategic thinking with detailed orientation
• Self-starter, ability to take initiative

Responsibilities

• Define program scope and problem statements
• Document current state for process and technologies of Structured Data, Unstructured Data and Big Data
• Develop data protection framework
• Define staffing models, function integrations, governance structure, workflow definition and data loss scenarios
• Document roles and responsibilities
• Develop roadmap and business case including funding estimates
• Facilitate obtaining stakeholder consensus
• Create program charter
• Validate current controls and IT risk management
• Create 2-year data protection program roadmap

Preferred Qualifications

• Cybersecurity certifications such as CISSP, CISM, vendor certifications, etc
• 1 - 3 years overall experience in data protection for cloud services (AWS, GCP, MS Azure)
• 1 - 3 years overall experience in data protection for server platforms, desktop platforms, network devices, end-point devices, mobile devices, and third-party information exchange
• 1 - 3 years overall experience in Public Key Infrastructure (PKI), Digital Certificates (user and device based), Secure Shell (SSH), Transport Layer Security (TLS), Hardware Security Modules (HSM), Key Management Lifecycle (Generation, Deployment and Revocation), Information / Digital Rights Management, Transparent Database Encryption (TDE), Storage and Messaging Encryption
• 1 - 2 years overall experience in IT infrastructure and networking administration
• 1 - 2 years overall experience in network and platform security