Technology Risk - Data Loss Prevention (Dallas, TX)Dallas, Texas, United States
Technology Risk - Data Loss Prevention (Dallas, TX)
Technology Risk - Data Loss Prevention (Dallas, TX)Dallas, Texas, United States

Job Description 

Goldman Sachs Technology Risk leads threat and risk management initiatives that help to protect the firm and our clients from information and cyber security risks. We are seeking a highly motivated and skilled Data Protection & Data Loss Prevention (DLP) Specialist to join our cybersecurity team. This role is critical in safeguarding our organization's sensitive information from unauthorized access, misuse, or leakage. The ideal candidate will possess a strong understanding of data protection principles, regulatory compliance, and experience with DLP technologies.  

In this position, you will collaborate with engineers and security risk professionals to develop advanced cyber-based behavioral detections and other surveillance mechanisms aimed at identifying anomalous behavior and preventing data leakage threats. You will also partner with colleagues across various departments, including Compliance, Legal, Human Capital Management (HCM), the Office of Global Security, Internal Audit and other key stakeholders, to leverage all available resources in advancing the program. 

Roles and Responsibilities 

  • Develop, implement, and maintain comprehensive data protection and DLP strategies, policies, and procedures to prevent data breaches and ensure compliance with relevant regulations (e.g., GDPR, NIST). 
  • Configure, deploy, and manage DLP tools and technologies (e.g., ZScaler, Microsoft Purview, Proofpoint) across various environments, including endpoints, networks, email, and cloud platforms. 
  • Design, implement, and maintain DLP policies, rules, and workflows across various platforms (endpoint, network, cloud).  
  • Monitor, analyze, and respond to DLP alerts and incidents, perform triage, investigation, and remediation to mitigate risks and improve detection accuracy. 
  • Conduct regular audits of data access and usage patterns, identifying vulnerabilities and recommending necessary controls to protect sensitive data. 
  • Prepare, update, and deliver documentation pertaining to solutions, including configuration details. 
  • Collaborate with technology, legal, compliance, and business teams to understand data flows, classify sensitive information, and integrate DLP solutions with existing security systems (e.g., SIEM, EDR). 
  • Assist in the development of security awareness training and education sessions to employees on data protection best practices and DLP policies to reduce insider threats. 
  • Provide subject matter expertise on data protection and DLP, staying current with emerging threats, technologies, and regulatory changes. 
  • Generate reports and metrics on DLP program and policy effectiveness, providing insights and recommendations for continuous improvement. 
  • Assist in the development and enhancement of security controls frameworks and participate in incident response activities. 
  • Engage with stakeholders to present risks and recommendations that support informed decision-making. 

Basic Qualifications 

  • Experience in information security, with a focus on data protection and Data Loss Prevention (DLP). 
  • Proficiency in administering and optimizing leading DLP solutions (e.g., Symantec DLP, McAfee DLP, Forcepoint DLP, Microsoft Purview, Zscaler, Proofpoint). 
  • Good understanding of data protection regulations and compliance standards such as GDPR and NIST. 
  • Experience with data classification, encryption, masking, and tokenization technologies. 
  • Knowledge of network security principles, endpoint security (EDR), and Security Information and Event Management (SIEM) tools. 
  • Familiarity with cloud security and data protection strategies. 
  • Strong written and verbal communication skills, capable of explaining complex technical ideas clearly to both specialized and general audiences. 
  • Excellent problem solving, project management, and analytical skills.  

Preferred Qualifications 

  • Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field 
  • Relevant security certifications (e.g., CISSP, CISM, CEH, CompTIA Security) are highly desirable 

 

Benefits 
Goldman Sachs is committed to providing our people with valuable and competitive benefits and wellness offerings, as it is a core part of providing a strong overall employee experience. A summary of these offerings, which are generally available to active, non-temporary, full-time and part-time US employees who work at least 20 hours per week, can be found here.