Key skills
AIKubernetesSaaS
About this role
Genworth is a company dedicated to empowering families during their aging journey with confidence. As a Data Security Engineer, you will be responsible for operationalizing and scaling the organization’s data security program, managing data discovery, classification, and protection capabilities, and ensuring alignment with governance, risk, and compliance expectations.
Responsibilities:
- Own day-to-day operation of data security platforms
- Perform onboarding of new data sources and maintain scanning coverage across environments
- Continuously tune classification rules and validation processes to improve accuracy
- Optimize DLP policies and enforcement mechanisms to balance protection and usability
- Identify overexposed, misclassified, or unprotected sensitive data and drive remediation
- Conduct analysis of data exposure risks and recommend mitigation strategies
- Validate effectiveness of data protection controls (e.g., DLP, encryption, labeling)
- Support data-related incident investigations and provide root cause analysis
- Work with application, data, cloud, and business teams to improve data protection outcomes
- Guide stakeholders on data classification, labeling, and handling best practices
- Participate in working groups and governance forums to align on data security strategy
- Coordinate with SOC, Identity, and Privacy teams for integrated security operations
- Identify opportunities to automate data discovery, classification, and response workflows
- Improve operational processes for onboarding, tuning, and governance
- Stay current on evolving risks (e.g., insider threat, data leakage, AI/data misuse)
- Contribute to improvements in enterprise data security strategy and roadmap
- Support adoption of new capabilities related to data security and privacy
Requirements:
- Bachelor's degree in Cybersecurity, Computer Science, Information Systems
- 3 years of experience in data security, cybersecurity, or related domain
- Hands-on experience with at least one: Data security platform (e.g., BigID, Varonis, Spirion), DLP solution (e.g., Microsoft Purview, Forcepoint, Symantec)
- Strong understanding of: Data classification and governance principles, Data protection techniques (DLP, encryption, tokenization), Security frameworks (NIST, ISO 27001, CIS)
- Experience working in enterprise IT environments (cloud, endpoint, SaaS)
- Familiarity with Linux and Kubernetes environments