Position: Data Loss Prevention SME
Location: Staines, Middlesex
Type: Contract – 6 months (rolling)
Salary: £650 p/day
As per the project you’ll be required as an immediate start as an SME to replace a member of the team; to make the most of knowledge transfer we need to start a resource quickly, duration is expected to be six months (rolling) with a project life cycle of up to 24 months.
A specialist in Data Loss Prevention, the SME is required to join the UDM team who are installing a new global instance of the Symantec Enforce Platform, please note ‘an operator’ is not required the role here is hands on – to work alongside the UDM architects and Operational resources to install the product and then to configure, to harden and perform operating acceptance testing, there is likely to be the need to do some operator knowledge transfer. The platform needs to be built to cover the following:
-Petabytes of data at rest scanning, across the Windows, NAS, SharePoint and O365 estate
-Deployment of EPP agents to around 40,000 end points
-CASB integration for O365
-Creating users / groups for role-based access
-Creating custom high level and detailed reports / extracts as needed
Specific expert skills required are product install and configuration, then expertise in setting the detection criteria (RegEx, VML, EDM, IDM)
In addition to this development of flex response rules and custom actions is needed.
The SME expert will be required to tune the false positives out of the list of incidents.
Legacy Symantec islands will need to be consumed and subsequently decommissioned or made read-only.
Any practical implementation experience of Azure Information Protection would be a distinct advantage.
An experienced Symantec DLP enforce expert (+5 years) is needed, must have extensive Symantec version 15 expertise specifically multiple enterprise installations under their belt.
Advanced in-depth knowledge of Windows NTFS security, plus understanding of similar security (such as NFS, WebDav),
Good working knowledge of Information Classification (meta data tagging).
Impeccable Stakeholder Management Skills
(Experience with business engagement for DLP Policy Management)
Experience on Security Incident Management Process
Experience with enterprise level defining “Data at Rest” scanning schedules, remediation schedules,
Executive Reporting working with CISO / business directors.
Very comfortable presenting / design document creation & slide creation.