External candidates: In order for your application to be correctly processed please sign-in before you apply
Internal candidates: Please go to Workday and click "Find Jobs" link under Career
Thank you for considering opportunities with us!
Job Title
Data Loss Prevention Engineer - Remote
Requisition Number
R6514 Data Loss Prevention Engineer - Remote (Open)
Location
Arizona - Home Teleworkers
Additional Locations
Colorado - Home Teleworkers, District of Columbia - Home Teleworkers, Florida - Home Teleworkers, Georgia - Home Teleworkers, Illinois - Home Teleworkers, Maryland - Home Teleworkers, Massachusetts - Home Teleworkers, Minnesota - Home Teleworkers, Missouri - Home Teleworker, Nevada - Home Teleworkers, Oregon - Home Teleworkers, Pennsylvania - Home Teleworkers, Tennessee - Home Teleworkers, Texas - Home Teleworkers, Virginia - Home Teleworkers, Washington - Home Teleworkers
Job Information
CSAA Insurance Group (CSAA IG), a AAA insurer, is one of the top personal lines property and casualty insurance groups in the U.S. Our employees proudly live our core beliefs and fulfill our enduring purpose to help members prevent, prepare for and recover from life's uncertainties, and we're proud of the culture we create together. As we commit to progress over perfection, we recognize that every day is an opportunity to be innovative and adaptable. At CSAA IG, we hire good people for a brighter tomorrow. We are actively hiring for a Data Protection Engineer - Remote! Join us and support CSAA IG in achieving our goals.
Your Role:
CSAA Insurance Group is seeking a highly skilled Data Loss Prevention (DLP) Engineer to join our cybersecurity team. The DLP Engineer will play a crucial role in implementing and managing our DLP initiatives to protect sensitive information and ensure compliance with the NIST Cybersecurity Framework, NIST Special Publication 800-53, Payment Card Industry Data Security Standard, and other applicable regulations. This position requires a blend of technical expertise, strategic vision, and a collaborative approach to safeguard the organization's data against loss or misuse.
Your work:
Technical Execution: Design, deploy, and optimize on-prem and cloud based DLP solutions and controls, including CASB, Endpoint DLP, and Network DLP.
Strategic Vision: Participate with the development of DLP strategies and policies that align with CSAA's business goals.
Compliance and Controls Assurance: Familiarity with relevant security regulations and frameworks. Participation with controls assurance and internal audit functions. This role involves actively integrating and maintaining best practices and cutting-edge strategies into our data protection efforts, aiming for not just compliance but also leadership in data security and privacy standards.
Knowledge Sharing and Advocacy: Act as a subject matter expert on DLP, sharing, integrating, and maintaining best practices and cutting-edge strategies with the team and the wider organization, and promoting a culture of data protection awareness and responsibility.
Cross-Functional Collaboration: Work closely with IT, compliance, legal, and business units to integrate DLP measures seamlessly into business processes and technology projects, fostering strong partnerships and collaborative problem-solving.
Risk Assessment and Mitigation: Conduct thorough risk assessments and vulnerability analyses, employing a risk-based approach to prioritize and address data protection risks and vulnerabilities.
Incident Response and Recovery: Participate in incident response planning and execution, ensuring rapid identification and mitigation of data loss incidents, and applying lessons learned to strengthen DLP practices.
Metrics and Reporting: Utilize metrics management to track, report, and improve the effectiveness of DLP controls, providing regular updates to management on the status of data protection efforts.
Required Experience, Education and Skills:
Bachelor's degree in Computer Science, Information Security, or a related field. Advanced degree preferred.
8+ years of relevant IT experience, with a minimum of 5 years of experience in information security, with a heavy focus on DLP solutions and technologies. Specifically, CASB, O365 and Endpoint tooling.
Familiarity with NIST Cybersecurity Framework, NIST Special Publication 800-53, Payment Card Industry Data Security Standard, California Consumer Privacy Act, and other pertinent data protection regulations and standards.
Proven expertise in developing and implementing strategic initiatives, complemented by a strong capability for tactical execution and problem-solving.
Excellent communication and interpersonal skills, capable of working effectively with cross-functional teams and management.
Proven track record of fostering trust, transparency, and flexibility within a team environment.
Relevant certifications such as CISSP, CISM, or similar are highly desirable.
Knowledge in security engineering, network security, authentication and security protocols, cryptography, and application security
Development experience in C#, C++, Java, Python, or Linux scripting
Technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security
What would make us excited about you?
Actively shapes our company culture (e.g., participating in employee resource groups, volunteering, etc.)
Lives into cultural norms (e.g., willing to have cameras when it matters: helping onboard new team members, building relationships, etc.)
Travels as needed for role, including divisional / team meetings and other in-person meetings.
Fulfills business needs, which may include investing extra time, helping other teams, etc.
CSAA IG Careers
At CSAA IG, we’re proudly devoted to protecting our customers, our employees, our communities, and the world at large. We are on a climate journey to continue to do better for our people, our business, and our planet. Taking bold action and leading by example. We are citizens for a changing world, and we continually change to meet it.
Join us if you…
· BELIEVE in a mission focused on building a community of service, rooted in inclusion and belonging.
· COMMIT to being there for our customers and employees.
· CREATE a sense of purpose that serves the greater good through innovation.
Recognition: We offer a total compensation package, performance bonus, 401(k) with a company match, and so much more! Read more about what we offer and what it is like to be a part of our dynamic team at https://careers.csaa-insurance.aaa.com/us/en/benefits
In most cases, you will have the opportunity to choose your preferred working location from the following options when you join CSAA IG: remote, hybrid, or in-person. Submit your application to be considered. We communicate via email, so check your inbox and/or your spam folder to ensure you don’t miss important updates from us. If a reasonable accommodation is needed to participate in the job application or interview process, please contact TalentAcquisition@csaa.com.
As part of our values, we are committed to supporting inclusion and diversity at CSAA IG. We actively celebrate colleagues’ different abilities, sexual orientation, ethnicity, and gender. Everyone is welcome and supported in their development at all stages in their journey with us.
We are always recruiting, retaining, and promoting a diverse mix of colleagues who are representative of the U.S. workforce. The diversity of our team fosters a broad range of ideas and enables us to design and deliver a wide array of products to meet customers’ evolving needs.
CSAA Insurance Group is an equal opportunity employer.
The national average salary range for this position is $122,850-136,500. However, we have a location-based compensation structure. Our salary ranges vary and are calculated based on county of residence. The full salary range for this position across all the states we hire in is $110,520-$164,000. This role also includes an opportunity for a company-wide annual discretionary bonus, through our Annual Incentive Plan (AIP), of up to 10% of eligible pay.
If you apply and are selected to continue in the recruiting process, we will schedule a preliminary call with you to discuss the role and will disclose during that call the available salary/hourly rate range based on your location. Factors used to determine the actual salary offered may include location, experience, or education.
Please note we are hiring for this role remote anywhere in the United States with the following exceptions: Hawaii and Alaska.
Must have authorization to work indefinitely in the US.
#HP_RX
#Expand
#LI-MB1
.