1. Home
  2. Data Loss Prevention Triage & Governance Analysts

Offers “Aviva”

Expires soon
Aviva

Data Loss Prevention Triage & Governance Analysts

  • Norwich (Norfolk)
  • IT development
Apply Now

Job description

Job Details

Role Sector: IT

Hours Per Week: 35

Salary Range: £

Additional Benefits:

Role Description

Working as part of CISO Global Cyber Security Operations (Security Services Delivery), to provide IT security operational services to Aviva markets; supporting regulatory, IT Security best practice, policy and business requirements. GCSO provides resources, processes and technologies to identify and respond to information security/cyber threats, vulnerabilities and incidents in order to minimize adverse impact to Aviva, its customers and partners.

The individual will:

·  Support the Data Loss Triage & Governance Lead in delivering Aviva’s data loss prevention service to UK and other Aviva markets.
·  Assist in global transformation of Global Cyber Security Operations; supporting a series of relevant funded transformation activities.
·  Develop and support triage and assurance/governance activities across an agreed range of markets and data loss-related services.
·  Support the Data Loss Triage & Governance Lead in the identification and ongoing monitoring of data loss risks and KPIs, and in the production of management information to ensure Aviva receives value from key data loss investments/services
·  Contribute to resolution of identified control weaknesses.
·  Contribute to security incidents as appropriate.
·  Contribute to design, development and maintenance of security standards and controls.

Essential Knowledge and Skills

Qualifications

·  Security-related qualifications desired (e.g. CISSP, CISM, CISA, CEH, etc).
·  Technical certifications desired (e.g. Cisco, Microsoft, etc).
·  Risk based certification desired (e.g. M_o_R).

Experience

·  Administration and support of DLP tools including:
·  Perform consistent triage based on solid understanding and interpretation of business process, data handling requirements, security controls and data privacy risks.
·  Validation of rules/solutions through effective and sustainable testing.
·  Data analytics, interpretation and presentation.
·  Management reporting.

Skills /Knowledge

·  The ability to effectively analyse business process and associated data handling rules, translating them in to clear and concise security requirements.
·  Appreciation of Enterprise DLP technologies (Symantec DLP, Symantec.Cloud, Echoworx, MDM, Sophos encryption, Lumension, etc)
·  Business engagement and stakeholder management.
·  Sound understanding of data privacy concepts, including relevant laws and regulations.
·  Use of tools and technology for analysing and reporting.
·  Management of risk concepts.

About the rewards

Competitive bonus and pension scheme alongside great flexible benefit options.

Make every future a success.
  • Job directory
  • Business directory
    •