Cyber security engineer (Data security and privacy, only independent visa)

Dice is a recruitment company seeking a Senior Staff Engineer in Cybersecurity focusing on Data Security and Privacy. The role involves leading data protection initiatives, identifying risks, and implementing security strategies to safeguard sensitive information.

Responsibilities:

• Define and implement data protection strategies: classification, access control, encryption, retention, and data handling
• Develop and enforce data security policies, standards, and procedures across the organization
• Build and maintain data inventories, data flows, and data sharing controls
• Design and implement data access controls ensuring least-privilege access
• Establish and enforce data encryption standards (data at rest and in transit)
• Define and manage data retention policies aligned with regulatory requirements
• Conduct data risk assessments to identify vulnerabilities and recommend mitigation strategies
• Lead incident response for data breaches and coordinate remediation efforts
• Collaborate with stakeholders to ensure compliance with regulatory and security requirements
• Stay updated with industry trends, threats, and best practices in cybersecurity
• Mentor and guide data protection engineers, including reviewing and approving deliverables
• Represent the organization in client and stakeholder engagements

Requirements:

• Lead the organization's data protection and cybersecurity initiatives to safeguard sensitive data and information systems
• Identify, assess, and mitigate data risks, vulnerabilities, and threats
• Design and implement enterprise-scale data security strategies and controls
• Act as a technical expert and mentor, driving best practices across the data protection function
• Define and implement data protection strategies: classification, access control, encryption, retention, and data handling
• Develop and enforce data security policies, standards, and procedures across the organization
• Build and maintain data inventories, data flows, and data sharing controls
• Design and implement data access controls ensuring least-privilege access
• Establish and enforce data encryption standards (data at rest and in transit)
• Define and manage data retention policies aligned with regulatory requirements
• Conduct data risk assessments to identify vulnerabilities and recommend mitigation strategies
• Lead incident response for data breaches and coordinate remediation efforts
• Collaborate with stakeholders to ensure compliance with regulatory and security requirements
• Stay updated with industry trends, threats, and best practices in cybersecurity
• Mentor and guide data protection engineers, including reviewing and approving deliverables
• Represent the organization in client and stakeholder engagements