-
Design, deploy, and maintain data security and protection solutions for structured and unstructured data.
-
Implement and operationalize data discovery, classification, and labeling tools to identify sensitive information.
-
Develop and manage data encryption, masking, tokenization, and secure key management practices.
-
Configure and optimize Data Loss Prevention (DLP) and Digital Rights Management (DRM/IRM) solutions.
-
Enhance data protection in cloud environments (AWS, Azure, GCP) with appropriate security controls.
-
Monitor and investigate data security incidents, collaborating with SOC and incident response teams.
-
Produce and maintain documentation, including architecture diagrams, security standards, and operating procedures.
-
Partner with stakeholders to align data protection measures with compliance (e.g., GDPR, PDPA, PCI-DSS).
-
Research emerging privacy-enhancing technologies (e.g., confidential computing, secure enclaves) and advise on adoption.
-
Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience).
-
5-10+ years of hands-on experience in data security, information protection, or cybersecurity engineering.
-
Practical experience with one or more of the following:
-
Data discovery and classification tools
-
Encryption, tokenization, and masking solutions
-
DLP platforms (e.g., Symantec, Forcepoint, Microsoft DLP)
-
Key and certificate management solutions, HSMs
-
Secure file transfer and storage, including SaaS environments
-
Strong understanding of cloud-native data security controls (AWS KMS, Azure Purview, GCP DLP).
-
Familiarity with scripting/coding (Python, PowerShell, or Java) for automation and integration.
-
Knowledge of compliance and regulatory requirements around data (e.g., GDPR, PDPA, MAS TRM).
-
Professional certifications such as CISSP, CCSP, CISM, or cloud security credentials are a plus.
