Tech Lead(Cyber Security)

Aristocrat is seeking a Tech Lead (Cyber Security) to ensure flawless data protection and system security. This role involves building, deploying, and maintaining enterprise Data Loss Prevention (DLP) solutions, managing data discovery and encryption, and ensuring compliance with global regulations. The ideal candidate will have 6+ years of experience in cybersecurity, strong knowledge of DLP tools, and proficiency in automation and reporting.

Must Have

• Build, deploy, and maintain enterprise Data Loss Prevention (DLP) solutions like Microsoft Purview.
• Architect, deploy, and tune DLP solutions across Endpoints, Networks, Emails, and Cloud channels.
• Manage data discovery tools for on-prem and cloud data environments.
• Deploy and manage cloud-native data protection controls (Defender for Cloud Apps, CASB, CSPM).
• Analyze DLP incidents, perform root cause analysis, and improve rules.
• Manage data encryption solutions for data at rest, in transit, and in use.
• Implement data labeling, auto-labeling, Sensitive Information Types (SITs), and custom SITs.
• Configure DLP policies, IRM policies, rules, incident workflows, and response automation.
• Collaborate with SOC and IR teams to respond to data-related security events.
• Minimize false positives by refining regex patterns, EDM, and IDM.
• Develop dashboards, reports, and analytics for monitoring data movement.
• Manage Cloud Access Security Broker (CASB) policies for SaaS applications.
• Partner with Security Architecture to align data protection strategy.
• Ensure compliance with GDPR, HIPAA, PCI DSS, DPDP Act (India), ISO 27001.
• Support audits, assessments, and risk evaluations related to data protection.
• Build documentation including SOPs, runbooks, architectural diagrams, and policy standards.
• Coordinate enterprise encryption standards for laptops, servers, and databases.
• Manage Key Management Systems (KMS) or Hardware Security Modules (HSM) and PKI lifecycles.
• Conduct periodic risk assessments and generate executive reporting on data risk posture.
• 6+ years of experience in Cybersecurity, specifically Data Protection/DLP.
• Extensive knowledge of enterprise DLP tools (e.g., Microsoft Purview/DLP, Symantec, Forcepoint, Zscaler).
• Experience with CASB solutions and Data Classification tools (e.g., MIP, Varonis).
• Strong understanding of encryption algorithms (AES, RSA), tokenization, data masking, and hashing.
• Proficiency in Python, PowerShell, or SQL for automation and reporting.
• Ability to explain complex data risks to non-technical collaborators and legal/HR teams.

Good to Have

• CEH certification
• CISSP certification
• CISM certification
• CDPSE (Certified Data Privacy Solutions Engineer) certification
• Vendor-specific DLP certifications

Perks & Benefits

• Robust benefits package
• Global career opportunities
• World Leader in Gaming Entertainment
• Commitment to responsible gameplay
• High standards in company governance, employee wellbeing and sustainability
• Diverse and inclusive environment
• Opportunity for employee development and career pathways

Aristocrat is seeking an outstanding Tech Lead (Cyber Security) to join our dynamic team. This role is integral to our mission of delivering flawless data protection and ensuring the security of our systems and data. As a global leader in gaming content and technology, we are committed to encouraging an inclusive and collaborative culture where innovation thrives. If you are ambitious and have a proven track record in cybersecurity, this is the perfect opportunity for you to make a significant impact.

What You'll Do

• Build, deploy, and maintain enterprise Data Loss Prevention (DLP) solutions such as Microsoft Purview.
• Architect, deploy, and tune DLP solutions across Endpoints, Networks, Emails, communication tools, and Cloud channels.
• Manage data discovery tools for structured/unstructured on-prem and cloud data environments.
• Deploy and manage cloud-native data protection controls (Defender for Cloud Apps, CASB, CSPM).
• Analyze DLP incidents, perform root cause analysis, and improve rules to reduce false positives.
• Manage data encryption solutions for data at rest, data in transit, and data in use.
• Implement data labeling, auto-labeling, Sensitive Information Types (SITs), and custom SITs.
• Configure DLP policies, IRM policies, rules, incident workflows, and response automation.
• Collaborate with SOC and IR teams to respond to data-related security events and fulfill their requirements.
• Minimize false positives by refining regex patterns, exact data matching (EDM), and indexed document matching (IDM).
• Develop dashboards, reports, and analytics for monitoring data movement.
• Manage Cloud Access Security Broker (CASB) policies to secure data in SaaS applications (e.g., O365, Salesforce, Slack).
• Partner with Security Architecture to align data protection builds, tooling, and implementation decisions with the global data protection strategy.
• Ensure compliance with GDPR, HIPAA, PCI DSS, DPDP Act (India), ISO 27001, and internal policies.
• Support audits, assessments, and risk evaluations related to data protection.
• Build documentation including SOPs, runbooks, architectural diagrams, and policy standards.
• Coordinate enterprise encryption standards for laptops (BitLocker), servers, and databases.
• Manage Key Management Systems (KMS) or Hardware Security Modules (HSM) or equivalent experience and Public Key Infrastructure (PKI) lifecycles.
• Conduct periodic risk assessments and generate executive reporting on data risk posture.

What We're Looking For

• 6+ years of experience in Cybersecurity, specifically passionate about Data Protection/DLP.
• Extensive knowledge of enterprise DLP tools (e.g., Microsoft Purview/DLP, Symantec/Broadcom, Forcepoint, Zscaler).
• Experience working with CASB solutions and practical knowledge of Data Classification tools (e.g., Microsoft Information Protection (MIP), Varonis).
• Strong understanding of encryption algorithms (AES, RSA), tokenization, data masking, and hashing.
• Proficiency in Python, PowerShell, or SQL for automation and reporting.
• Ability to explain complex data risks to non-technical collaborators and legal/HR teams.

Preferred Qualifications

• Certifications: CEH, CISSP, CISM, CDPSE (Certified Data Privacy Solutions Engineer), or vendor-specific DLP certifications.

Excited to join us in this pivotal role? Apply today and be part of a world-class team that's driving innovation and excellence in cybersecurity!

Why Aristocrat?

Aristocrat is a world leader in gaming content and technology, and a top-tier publisher of free-to-play mobile games. We deliver great performance for our B2B customers and bring joy to the lives of the millions of people who love to play our casino and mobile games. And while we focus on fun, we never forget our responsibilities. We strive to lead the way in responsible gameplay, and to lift the bar in company governance, employee wellbeing and sustainability. We’re a diverse business united by shared values and an inspiring mission to bring joy to life through the power of play.

We aim to create an environment where individual differences are valued, and all employees have the opportunity to realize their potential. We welcome and encourage applications from all people regardless of age, gender, race, ethnicity, cultural background, disability status or LGBTQ+ identity. EEO M/F/D/V

• World Leader in Gaming Entertainment
• Robust benefits package
• Global career opportunities

Our Values

• All about the Player
• Talent Unleashed
• Collective Brilliance
• Good Business Good Citizen

Travel Expectations

None

Additional Information

This role is subject to mandatory background screening and regulatory approvals. As part of your employment with Aristocrat, you may be required to complete a criminal background check, submit fingerprints, and obtain licenses or registrations with applicable gaming regulatory authorities. Aristocrat operates in a highly regulated environment and holds licenses in over 340 gaming jurisdictions worldwide. To meet our global compliance obligations, you will be required to provide the disclosure of relevant personal and background information to government agencies, sovereign nations/tribal regulators, and other applicable gaming regulatory bodies. This is a condition of Aristocrat’s gaming licenses. The specific information required may vary depending on the jurisdiction and project assignment.

At this time, we are unable to sponsor work visas for this position. Candidates must be authorized to work in the job posting location for this position on a full-time basis without the need for current or future visa sponsorship.