Key skills
CloudCyber SecuritySaaSLeadership
About this role
Role Overview
- Oversee the continuous identification and mapping of all data assets across diverse environments, including cloud (IaaS, PaaS, SaaS), databases, and on-premises systems.
- Utilize available tools to discover data stores and maintain a real-time inventory of sensitive data, ensuring no blind spots in the data landscape.
- Collaborate with IT and business units to understand data flows and ensure comprehensive visibility into where critical data resides.
- Maintain and support a robust Data Security Posture Management (DSPM) framework to continuously assess and improve the organization’s data security posture.
- Identify and prioritize risks, such as misconfigurations, excessive permissions, or plaintext data storage, and provide actionable remediation recommendations.
- Monitor data stores for vulnerabilities and ensure proactive measures to reduce the attack surface across all environments.
- Develop and enforce Data Loss Prevention (DLP) policies to prevent unauthorized access, exfiltration, or misuse of sensitive data.
- Implement and manage real-time monitoring and controls to detect and block sensitive data from leaving secure environments and minimize false positives.
- Lead the development of a proactive Data Detection & Response (DDR) strategy to detect and respond to data security incidents in real-time.
- Coordinate with incident response teams to mitigate risk and ensure operational resilience.
- Ensure the data security program aligns with industry regulations (e.g.: GDPR, CCPA, GLBA) and internal privacy policies.
Requirements
- Bachelor’s degree in computer science, Cybersecurity, Information systems or related field or equivalent experience.
- 10+ years in Cybersecurity with at least 3 years in a leadership role focused on data security or DSPM.
- Proven experience in designing and implementing data security programs.
- Hands-on experience with data discovery, classification, DLP, and access governance tools.
- Must hold at least 1 certification such as CISSP, CISM, CISA, CRISC, CIPP or similar privacy certifications.
Tech Stack
- Cloud
- Cyber Security
Benefits
- competitive compensation
- 401K match
- benefits starting day one
- flexible work schedules
- paid vacation and holiday time
- sick time
- dependent sick time
- adoption reimbursement
- tuition reimbursement
- vendor discounts
- employment referral program
- AD&D insurance
- pre-taxed accounts
- voluntary legal plan
- B&V Credit Union
- performance-based bonus program