Roles and Responsibilities • Administer, support, and maintain the Forcepoint DLP environment. • Update and maintain user IDs and Workday dictionaries in Forcepoint. • Manage the DLP rule library, including policy updates, reconciliation, and ongoing maintenance. • Perform rule tuning by analyzing DLP incidents, identifying false positives, and implementing policy improvements. • Document false positive analysis, tuning activities, and policy changes. • Create and maintain false positive, user, and destination exceptions based on business requirements. • Collaborate with Tier 2 support teams and Deloitte to investigate, resolve, and optimize DLP incidents. • Review Forcepoint event output to identify tuning opportunities and improve policy effectiveness while reducing false positives. • Support incident investigations and ensure DLP policies align with organizational security standards. • Maintain operational documentation, knowledge articles, and standard operating procedures. Required Skills • 5–8 years of experience in Information Security, with at least 4 years of hands-on experience with Forcepoint DLP. • Strong expertise in Forcepoint DLP policy administration, rule management, and incident analysis. • Experience in rule tuning, false positive analysis, and exception management (user, destination, and policy exceptions). • Familiarity with Workday dictionaries, Active Directory, and user identity management. • Good understanding of DLP concepts, data classification, and data protection controls. • Strong analytical, troubleshooting, and documentation skills. • Excellent communication and stakeholder management skills. • Ability to work effectively in a collaborative onsite environment with internal teams and external partners.
Read Less