Primary Accountabilities:
Technical (70%)
● Design, implement, and maintain DLP policies across endpoint, network, email, and cloud platforms to prevent
unauthorized data disclosure.
● Develop and maintain complex detection patterns using regular expressions (regex), keyword matching, file
fingerprinting, and metadata-based rules for identifying sensitive data (PII, PHI, PCI, intellectual property, etc.).
● Configure and tune DLP rules to detect sensitive data across structured and unstructured formats including
documents, databases, emails, web traffic, and cloud storage.
● Continuously optimize detection accuracy by reducing false positives while maintaining effective coverage of
true data exposure risks.
● Monitor, analyze, and investigate DLP alerts and events to determine if they represent genuine data exposure
risks or false positives.
● Conduct detailed analysis of flagged events including reviewing content snippets, user behavior patterns, file
metadata, and transmission channels.
● Correlate DLP events with other security data sources (SIEM, endpoint detection, user behavior analytics) to
identify potential insider threats or data exfiltration attempts.
● Document investigation findings and provide clear recommendations on incident severity, required remediation
actions, and policy adjustments.
● Escalate confirmed data exposure incidents to incident response team and support forensic investigations as
needed.
● Engage with engineering teams to maintain and optimize DLP infrastructure including agents, network sensors,
cloud connectors, and management consoles.
● Develop and maintain automated workflows for alert triage, policy updates, and reporting.
● Create and maintain comprehensive documentation of DLP policies, detection patterns, investigation procedures, and operational runbooks.
● Test new DLP rules and policies in non-production environments before deployment to minimize business disruption.
● Integrate DLP systems with other security tools including SIEM, SOAR, ticketing systems, and data classification platforms.
Strategic (20%)
● Contribute to the strategic development and maturation of the organizations DLP program aligned with data protection objectives and regulatory requirements.
● Research and evaluate new DLP technologies, detection techniques, and data classification methodologies to enhance program effectiveness.
● Identify gaps in data visibility and coverage, recommending expansion of DLP controls to new data repositories, communication channels, or cloud services.
● Develop metrics and KPIs to measure DLP program effectiveness including policy coverage, detection accuracy, incident response times, and false positive rates.
● Provide regular reporting on DLP trends, top data exposure risks, user behavior patterns, and policy effectiveness to SOC management and stakeholders.
● Collaborate with legal, compliance, privacy, HR, and business units to understand data handling requirements and ensure DLP policies support business operations.
● Provide guidance to business teams on secure data handling practices and acceptable use of sensitive information.
● Support privacy and compliance teams with DLP controls for regulatory requirements (GDPR, CCPA, HIPAA, PCI-DSS, etc.).
● Participate in data classification initiatives to ensure consistent labeling and handling of sensitive information.
Operational (10%)
● Support incident response activities related to data exposure or insider threat investigations.
● Participate in security awareness initiatives by providing real-world examples of data exposure risks and best practices.
● Maintain knowledge of data protection regulations, industry best practices, and emerging data exfiltration techniques.
● Support audit and compliance activities by providing DLP policy documentation, configuration details, and evidence of monitoring.
● Contribute to change management processes for DLP policy updates and system modifications.
● Success in this role is measured by improved detection accuracy, reduced false positives, timely investigation of DLP alerts, and increased visibility into sensitive data movement across the organization.
● Operate within SOC workflows, SLAs, and escalation paths for data exposure incidents.
Required Qualifications:
● Bachelor degree in Computer Science, Information Security, Information Technology, or related field.
● 3-5 years of experience in cybersecurity with at least 2 years focused on data loss prevention, data security, or security operations.
● Strong proficiency in regular expressions (regex) for pattern matching and data identification.
● Experience with enterprise DLP solutions.
● Understanding of data classification frameworks and sensitive data types (PII, PHI, PCI, trade secrets, intellectual property).
● Knowledge of data transmission protocols and common data exfiltration channels (email, web uploads, removable media, cloud storage, messaging platforms).
● Strong analytical skills with ability to investigate security events and distinguish true positives from false positives.
● Experience with SIEM platforms and security event correlation.
● Basic Proficiency with scripting or automation (Python, PowerShell, or similar) for data analysis and workflow automation.
● Excellent written and verbal communication skills with ability to explain technical findings to non-technical stakeholders.
● Understanding of data privacy regulations such as GDPR, CCPA, HIPAA, and PCI-DSS.
Preferred Qualifications:
● Certifications such as CISSP, Security+, CEH, GCFA, or vendor-specific DLP certifications.
● Experience with cloud DLP solutions for Microsoft 365, Google Workspace, AWS, or Azure environments.
● Knowledge of insider threat detection methodologies and user behavior analytics (UBA/UEBA).
● Experience with data classification tools and automated content inspection technologies.
● Understanding of endpoint security controls and endpoint DLP deployment models.
● Familiarity with SOAR platforms and automated response workflows.
● Experience with forensic analysis of data exposure incidents.
● Knowledge of cryptography and encryption technologies for data protection.
Individual Competencies:
● Integrity: Gains the trust of others by taking responsibility for own actions and telling the truth. Follows through on commitments and agreements; Respects confidentiality; Maintains confidentiality regardless of pressure from others.
● Teamwork: Builds relationships and works cooperatively with others, inside and outside the organization, to accomplish objectives to build and maintain mutually beneficial partnerships, leverage information and achieve results.
● Adaptable: Responds to change with a willingness to learn new ways to accomplish work objectives with a positive attitude.
● Innovative: Ability to develop, sponsor, or support the introduction of new and improved methods, products, procedures or technologies.
● Analytical and Critical Thinking: Ability to tackle a problem by using a logical, systematic, sequential approach.
● Communication: Giving and receiving messages and information in written, oral, and visual formats concisely for a complete understanding of meaning and intent.
The physical demands described here are representative of those that must be met by an associate to successfully perform the major job responsibilities (essential functions) of this job. Reasonable accommodations may be made to
enable individuals with disabilities to perform the major job responsibilities. This job description is not intended to be an exhaustive list of all duties, responsibilities, or qualifications associated with the job. Duties responsibilities and activities may change, or new ones may be assigned at any time with or without notice.
While performing the duties of this job, the associate is:
● Regularly required to use hands to finger, handle or feel objects, tools or controls, and reach with hands or arms.
● Regularly required to talk or hear and read instructions on a computer monitor and/or printed on paper.
● Occasionally required to stand, kneel or stoop, and lift and/or move up to 15 pounds.
● Regularly required to view items at an extremely close range and must be able to adjust and readjust focus.
● Occasionally required to remain in a stationary position.
As an Inmar Associate, you:
● Put clients first and consistently display a positive attitude and behaviors that demonstrate an awareness and willingness to listen and respond to clients in order to meet their short-term and long-term needs, requirements and exceed their expectations.
● Treat clients and teammates with courtesy, consideration and tact; you also can perceive the needs of internal and external clients and communicate effectively with the objective of delighting and retaining the client.
● Build collaborative relationships and work cooperatively with others, inside and outside the organization, to accomplish objectives, develop and maintain mutually beneficial partnerships, leverage information and achieve results.
● Set and attain achievable, yet aggressive, goals with a sense of urgency and accountability.
● Understand that results are important and focus on turning mission into action to achieve results following the principles of agile, dynamic execution while consistently complying with quality, service and productivity standards to meet deadlines and exceed expectations by giving our clients the best possible outcome.
● Support a safe work environment by following safety rules and regulations and reporting all safety hazards.
Occasionally: Job requires this activity up to 33% of the time
Frequently: Job requires this activity between 33% - 66% of the time
Regularly: Job requires this activity more
At Inmar, we put people first and that means empowering our associates to thrive at every stage of life and career. Our comprehensive and competitive benefits package is thoughtfully designed to support a wide range of lifestyles and life stages.
Eligible associates have access to:
Medical, Dental, and Vision insurance
Basic and Supplemental Life Insurance options
401(k) retirement plans with company match
Health Spending Accounts (HSA/FSA)
We also offer:
Flexible time off and 11 paid holidays
Family-building benefits, including Maternity, Adoption, and Parental Leave
Tuition Reimbursement and certification support, reflecting our commitment to lifelong learning
Wellness and Mental Health counseling services
Concierge and work/life support resources
Adoption Assistance Reimbursement
Perks and discount programs
Please note that eligibility for some benefits may depend on your job classification and length of employment. Benefits are subject to change and may be governed by specific plan or program terms.
We are an Equal Opportunity Employer, including disability/vets.
Recruitment Fraud Notice: Recruitment fraud is an increasingly common scam where individuals pose as employers to offer fictitious job opportunities. Scammers sometimes impersonate Inmar recruiters on LinkedIn and other channels. We will never ask for payment or sensitive personal information during the hiring process. Verify any role on our official Workday Careers site and learn how to spot scams in our full notice.
This position is not eligible for student visa sponsorship, including F-1 OPT or CPT. Candidates must have authorization to work in the U.S. without the need for employer sponsorship now or in the future.