OverviewABOUT US:
Founded in 1993, Bayview Asset Management is an investment management firm focused on investments in mortgage and consumer credit, including whole loans, asset-backed securities, mortgage servicing rights, and other credit-related assets.
POSITION SUMMARY:
The Data Loss Protection Manager is responsible for designing, implementing and managing data protection strategies across our enterprise. In this role, you will lead the monitoring, analyzing, and response to data protection events and incidents to prevent unauthorized access, misuse or loss of sensitive information assets, and help drive more secure business practices. The ideal candidate will have experience with data protection technologies, strong analytical skills, and experience working with cross-functional, technical and non-technical teams to ensure compliance with organizational and regulatory requirements.
RESPONSIBILITIES:
- Continuously monitor and analyze DLP alerts to identify potential data loss incidents, policy violations and risky business practices.
- Investigate, escalate and respond to DLP incidents in accordance with security policies and incident response procedures.
- Profile and analyze patterns of data movement to enhance data protection controls and reduce insider risks.
- Profile and analyze data discovery and data classification reports to validate true positives and work cross-functionally to mitigate risk exposure.
- Work with security engineering to develop, implement, and fine-tune DLP policies and rules to prevent unauthorized data access or transmission, and minimize false positives.
- Conduct periodic audits and assessments to evaluate the effectiveness of DLP controls.
- Assist in the classification and protection of sensitive data, ensuring compliance with organizational policies.
- Generate reports on DLP incidents, trends, and security risks, providing recommendations for improvement.
- Collaborate with IT, security and business teams to integrate data protection controls into workflows.
- Educate employees on best practices for data security and compliance.
- Collaborate with vendors and stakeholders to optimize DLP solutions and address system enhancements.
Qualifications:
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
- 5-7 years of experience in data protection, incident response or information security roles.
- Strong, hands-on experience with Microsoft Purview, including but not limited to Data Loss Prevention, Information Protection, eDiscovery and Audit, and Varonis
- Understanding of data protection laws, compliance frameworks, and industry best practices.
- Knowledge of network security, endpoint security, and cloud security principles.
- Experience with SIEM, endpoint protection, cloud security and email security solutions are a plus.
SKILLS:
- Strong analytical, problem-solving and incident response skills with attention to detail.
- Ability to work independently and collaboratively in a fast-paced environment.
- Excellent communication skills to interact with technical and non-technical stakeholders.
Certifications
- CISSP, CISA, CEH, CCSP, or Microsoft Certified preferred
LOCATION and COMPENSATION:
- This role will be 100% remote
- Base compensation is expected to be $120,000-160,000 with the opportunity for incentive compensation including bonus compensation.
*Salary may vary based on work experience, market conditions, location, and qualifications/training.
EEOC
Bayview is an Equal Employment Opportunity employer. All aspects of consideration for employment and employment with the Company are governed on the basis of merit, competence and qualifications without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, or any other category protected by federal, state, or local law.
