NopalCyber
Website:
nopalcyber.com
Job details:
Role Overview
The DLP Administrator is responsible for designing, implementing, and operating data protection solutions with a primary focus on Data Loss Prevention (DLP). This role ensures that robust data protection practices are integrated into business processes, IT systems, and user behavior. A key objective is to establish best-in-class data protection capabilities in an environment with less data security awareness and cultural challenges, such as widespread data sharing or unauthorized data transfers.
As a subject matter expert in data security and privacy engineering, this individual deploys and tunes data discovery, classification, DLP, encryption, and key management controls. The Data Protection Engineer partners closely with Engineering, IT, Compliance, Legal, and Privacy stakeholders to embed privacy-by-design principles into how data is created, stored, shared, retained, and monitored.
Key Responsibilities
– Data Loss Prevention (DLP) design, evaluation, finalize & implement of a DLP solution aligned with business needs and data protection risks
– Implement and tune sensitivity labels, and data classification rules based on business and regulatory requirements.
– Define and maintain DLP policies and rules to detect and prevent unauthorized data access, transfer, or leakage
– Manage DLP policy lifecycle including versioning, change control, exception handling, and periodic policy reviews
– Monitor DLP alerts and ensure timely investigation, triage, and response
– Continuously refining DLP configuration based on insider threat trends, user behavior, and business feedback
– Collaborate with client users - IT, process owners, and application teams to embed data protection controls into systems and workflows
– Perform data discovery, flow analysis and risk assessments to identify sensitive data exposure points
– Define and apply classification, access control, and encryption strategies wherever needed
– Work closely with the awareness team to develop targeted campaigns focused on responsible data handling and the risks of data leakage
– Engage with teams to understand behaviors and perceptions around data use and design appropriate behavioral change strategies
– Actively contributes to the development of a data protection culture in units with low initial awareness and high risk of data misuse.
– Compliance Support or Ensure that implemented controls align with data protection regulations and internal security policies
– Support audits, assessments, and compliance reviews related to data security
– Maintain documentation for data protection controls, configurations, and incidents handling
– Having relevant cloud security (Ex: SC-400) and respective tool expertise certifications will be an added advantage
What We’re Looking For:
– 5+ years of minimum experience in data protection, as cybersecurity specialist or architect
– Hands-on experience with DLP technologies (e.g., Microsoft Purview, Netskope, Varonis, Forcepoint, etc.), with a track record of successful project delivery
– Strong understanding of data protection principles (e.g., least privilege, data classification, access control)
– Experience working in environments with low data security maturity or resistance to change is a strong plus
– Strong communication and interpersonal skills, with the ability to influence behavioral change
– Knowledge of privacy regulations and ISO 27001 is beneficial
– Good knowledge and strong interest in Cyber Security (best-practices, standards, technology) & good knowledge in IS/IT (network, endpoint, cloud, application, …)
Key Competencies
- Strong problem-solving and analytical thinking
- Ability to lead engineering initiatives and mentor teams
- Excellent communication and stakeholder management skills
- Passion for automation, innovation, and continuous improvement
Click on Apply to know more.