Data Protection Specialist

Job Title: UAE National - Data Protection Specialist | Corporate Services | Group Technology & Digital Platforms

Overview of the Role:

As a crucial member of the Cybersecurity subfunction within the CISO office, the Data Protection Specialist plays a pivotal role in leading the development, implementation, and product management of data protection solutions. In the rapidly evolving landscape of cybersecurity, this role remains at the forefront of safeguarding organizations from emerging data exfiltration risks. The Data Protection Specialist continuously adapts their skills and approaches to stay ahead of evolving threats, ensuring the organization's data remains secure and resilient. By fulfilling this role, the Data Protection Specialist actively contributes to the key objective of the organization, which revolves around enhancing Cyber Security Resilience.

What You Will Do:

Strategic Contribution:
1. Data Protection Roadmap Management: Collaborate with cross-functional teams to develop and maintain comprehensive data protection security roadmaps.
2. Architecture and Design Artifacts: Create and maintain architecture and design artifacts related to data protection. Ensure alignment with industry best practices and compliance with relevant regulations and standards.
3. License Utilization and Cost Optimization: Analyze and optimize license utilization for cost-effectiveness while maintaining the highest level of security.
4. Data Protection Program Management: Support the ongoing management of the Data Protection program, including continuous improvement efforts, risk assessment, and mitigation strategies.
5. Vendor Communications: Stay connected with Microsoft and other DLP solution providers, engaging with official blogs, documentation, and forums.
6. Continuous Learning: Dedicate time regularly to research and learn about data security, DLP technologies, and Microsoft solutions.

Tactical Contribution:
1. Governance of Data Protection Suite: Ensure overall governance of operation, configuration, monitoring, and implementation of Data Protection Suite, including MIP, DLP, MCAS, Intune.
2. Design and Implement DLP Policies: Collaborate with IT and security teams to develop and deploy effective data loss prevention policies using Microsoft DLP solutions.
3. Monitoring and Incident Response: Continuously monitor data flow, access, and usage patterns to detect potential data breaches or policy violations. Take immediate action in response to DLP incidents.
4. DLP Policy Maintenance: Regularly review and update DLP policies based on changing data security requirements and regulatory standards.
5. End-User Awareness and Training: Conduct training sessions and awareness programs for employees on data protection guidelines and DLP best practices.
6. Collaboration with Cross-Functional Teams: Work closely with IT, compliance, legal, and business teams to align data protection efforts and ensure seamless integration of DLP measures.
7. Security Risk Assessments: Perform risk assessments and audits to identify potential vulnerabilities and recommend remediation actions.
8. Reporting and Documentation: Generate regular reports on DLP incidents, trends, and overall data protection performance. Maintain comprehensive documentation of DLP policies, procedures, and configurations.

Skills Required:
1. Proven experience in data loss prevention, security operations, or similar cybersecurity roles.
2. Hands-on expertise with Microsoft DLP solutions, including Microsoft 365 DLP, Azure Information Protection, and Microsoft Cloud App Security, MS Intune.
3. Familiarity with data protection regulations and frameworks (e.g., GDPR, HIPAA, ISO 27001).
4. Strong analytical and problem-solving skills.
5. Excellent communication skills to collaborate with various teams and deliver training sessions.
6. Relevant certifications such as Microsoft Information Protection Administrator Associate, Microsoft Azure Security Engineer Associate, Certified Information Systems Security Professional (CISSP) are a plus.
7. Excellent verbal and written communication skills.
8. Experience in developing metrics and preparing operational dashboards.

What Equips You for the Role:
- Bachelor's degree in Business, IT, Engineering, or similar.
- 5 years of experience in Information Technology in a customer-facing capacity and 2 years in a cybersecurity-related field.