Description:
Job DescriptionThis position is a Cyber Security Support Engineer role managing Netskope DLP and other security engineering tools. This is an important role within the cyber security team and will provide an opportunity for someone to contribute to a significant uplift in Nines security posture.
Primary focus will be the uplift of DLP controls, including supporting DLP rules, processes, as well as managing DLP incidents. This will involve working with other members of the Cyber Security team, as well as other teams including Service Desk, People and Culture and managers and users throughout the business.
This role will also be exposed to other Cyber Security tools, including endpoint privilege, vulnerability management and identity tools amongst others.
The Cyber Security Support Engineer plays a crucial role in safeguarding Nine’s critical systems and data by overseeing key controls that protect Nine’s data and content. This role involves maintaining and tuning robust policy settings that control access to key applications and portals, managing access to applications, troubleshooting cyber security application issues and responding to service interruptions and incidents.
This role will also assist the team in performing other key security functions such as vulnerability management, help coordinate vulnerability remediation efforts, and ensure continuous improvement of security posture. Other cyber security engineering tasks involve product evaluation and implementation, risk management and security incident response.
Key accountabilities:
-
Implement, configure, and maintain DLP solutions to securely manage, monitor, and control access.
-
Define and enforce policies and procedures for the management of DLP ensuring compliance with industry standards and regulations.
-
Conduct regular reviews and assessments to identify and remediate security risks related to DLP.
-
Monitor and audit privileged activities, ensuring compliance with policies and promptly addressing any anomalies or security incidents.
-
Conduct regular vulnerability assessments, penetration tests, and security scans on systems, networks, and applications to identify vulnerabilities and weaknesses.
-
Prioritise vulnerabilities based on risk and potential impact, working with relevant teams for resolution.
-
Collaborate with IT and security teams to facilitate the timely remediation of identified vulnerabilities.
-
Track and report on the progress of vulnerability remediation efforts to senior management.
-
Stay informed about emerging threats and vulnerabilities by monitoring security advisories, research reports, and threat intelligence sources.
-
Translate threat intelligence into actionable insights for vulnerability management.
-
Maintain comprehensive records of vulnerability assessments, remediation actions, and compliance status.
-
Prepare and present reports to senior management and auditors on vulnerability management program effectiveness and risk reduction.