116388 Cybersecurity Operations - DLP & EDR Specialist

2 Months ago • 8 Years +
Cyber Security

Job Description

This role is responsible for the continuing operational management and maintain of enterprise cybersecurity solutions, with a primary focus on Data Loss Prevention (DLP) and Microsoft Defender for Cloud (MDC) controls. The Operations Specialist will work closely with CAE’s project teams, IT, Cybersecurity, Cloud Engineering, and Architecture to support the implementation and integration of these solutions. This role will participate in supporting ongoing project-driven activities, while also ensuring the continued operational effectiveness, monitoring, and optimization of the deployed technologies in a steady state. Incumbent in this role is recognized as subject matter expert within discipline or a key contributor in a more complex/critical environment. Having a wide-ranging experience conducting complex work important to the organization. Position requires professional degree with a broad knowledge of several professional disciplines and typically 8 years of related experience.
Must Have:
  • Operate and maintain DLP platforms including Microsoft Purview and Digital Guardian.
  • Operate and maintain Microsoft Defender configurations, policies, alerts, and security recommendations.
  • Support endpoint and cloud security operations using Trend Micro Apex One and Deep Security.
  • Collaborate with project teams, IT, compliance, and cloud engineering for DLP and Endpoint security.
  • Act as escalation point responding to security incidents and alerts from DLP and Defender.
  • Handle and protect sensitive data and controlled goods per regulatory requirements.
  • Develop and maintain operational processes, runbooks, dashboards, and reports.
  • Perform regular tuning and policy updates to improve detection accuracy.
  • Support audits, compliance initiatives, and risk assessments related to data security.
  • Stay current with emerging threats, vulnerabilities, and best practices.
  • May take on additional responsibilities or contribute to other security initiatives.
  • Proven hands-on experience implementing and managing DLP solutions.
  • Experience with Microsoft Purview for data classification and information protection.
  • Deep knowledge of cloud security posture management (CSPM) using Microsoft Defender for Cloud.
  • Familiarity with endpoint-based DLP and insider risk tools.
  • Experience working with sensitive data and controlled goods in regulated industries.
  • Proficiency in scripting and automation using PowerShell, KQL, and Azure Logic Apps.
  • Familiarity with SIEM platforms, particularly Microsoft Sentinel.
  • Relevant Industry Certifications (e.g., Microsoft SC-200, Azure Security Engineer, CISSP, GIAC).

Add these skills to join the top 1% applicants for this job

cross-functional
data-analytics
event-management
risk-management
compliance-reporting
game-texts
cross-functional-collaboration
azure
powershell
cloud-security

About This Role

Job Summary

This role is responsible for the continuing operational management and maintain of enterprise cybersecurity solutions, with a primary focus on Data Loss Prevention (DLP) and Microsoft Defender for Cloud (MDC) controls. The Operations Specialist will work closely with CAE’s project teams, IT, Cybersecurity, Cloud Engineering, and Architecture to support the implementation and integration of these solutions.

This role will participate in supporting ongoing project-driven activities, while also ensuring the continued operational effectiveness, monitoring, and optimization of the deployed technologies in a steady state.

Incumbent in this role is recognized as subject matter expert within discipline or a key contributor in a more complex/critical environment. Having a wide-ranging experience conducting complex work important to the organization. Position requires professional degree with a broad knowledge of several professional disciplines and typically 8 years of related experience.

Key Responsibilities:

  • Operate and maintain DLP platforms including Microsoft Purview and Digital Guardian to monitor, detect, and respond to data exfiltration risks.
  • Operate and maintain Microsoft Defender configurations, policies, alerts, and security recommendations.
  • Support endpoint and cloud security operations using tools such as Trend Micro Apex One and Trend Micro Deep Security.
  • Collaborate with project teams, IT, compliance, and cloud engineering to operate and maintain DLP and Endpoint security solutions.
  • Act as escalation point responding to security incidents and alerts generated by DLP and Defender for Cloud/Server.
  • Handle and protect sensitive data and controlled goods in accordance with regulatory and organizational requirements.
  • Develop and maintain operational processes, runbooks, dashboards, and reports for security monitoring.
  • Perform regular tuning and policy updates to improve detection accuracy and reduce false positives.
  • Support audits, compliance initiatives, and risk assessments related to data security.
  • Stay current with emerging threats, vulnerabilities, and best practices in cloud and data security.
  • May be required to take on additional responsibilities or contribute to other security initiatives as business needs evolve.

Must-Have Skills:

Advanced Data Loss Prevention (DLP) Expertise

Proven hands-on experience implementing and managing DLP solutions in medium to large-scale enterprise environments. Strong understanding of data classification, policy creation, incident handling, and reporting.

Microsoft Purview (formerly Compliance Center)

Experience with Microsoft Purview for data classification, information protection, and compliance reporting can complement DLP expertise.

Microsoft Defender for Cloud Proficiency

Deep knowledge of cloud security posture management (CSPM), threat detection, and alert triage using Microsoft Defender for Cloud. Demonstrated experience deploying and managing Defender in production environments.

Endpoint DLP and Insider Risk Management

Familiarity with endpoint-based DLP and insider risk tools within Microsoft 365 Defender or third-party platforms.

Sensitive Data & Compliance Handling

Experience working with sensitive data and controlled goods in regulated industries. Strong understanding of compliance frameworks and secure data handling practices.

Security Automation & Scripting

Proficiency in scripting and automation using tools such as PowerShell, Kusto Query Language (KQL), and Azure Logic Apps to streamline security operations and response.

SIEM Experience

Familiarity with Security Information and Event Management (SIEM) platforms, particularly Microsoft Sentinel, including incident investigation.

Relevant Industry Certifications

Certifications such as Microsoft SC-200 (Security Operations Analyst), Azure Security Engineer Associate, CISSP, or GIAC.

Additional Comments:

This is a hands-on operational role with a strong focus on supporting strategic security initiatives, particularly around Data Loss Prevention (DLP) and Microsoft Defender for Cloud (MDC). The successful candidate will play a key role in ensuring the effectiveness and ongoing success of these solutions by working closely with project teams, IT, compliance, and cloud engineering.

This individual will be responsible for driving operational excellence, maintaining solution integrity, and ensuring alignment with organizational security objectives. Strong communication, documentation, and cross-functional collaboration skills are essential. Due to the sensitivity of the data and systems involved, candidates may be required to undergo a security background check or obtain security clearance.

Set alerts for more jobs like 116388 Cybersecurity Operations - DLP & EDR Specialist
Set alerts for new jobs by CAE
Set alerts for new Cyber Security jobs in Canada
Set alerts for new jobs in Canada
Set alerts for Cyber Security (Remote) jobs

Contact Us
hello@outscal.com
Made in INDIA 💛💙