Listed as one of the best places to work, NetApp has an exciting opportunity for you to join an elite security team. As the data authority in the hybrid cloud, NetApp takes pride in its ability to protect data as such, security is an integral part of the NetApp culture. The Data Protection Engineer is responsible for supporting, developing, and enhancing the NetApp Insider Threat and Data Protection program. In addition, they will engage with Global Security, Information Technology, and other Business Units across the company, provide essential metrics and documentation, and continue to use tools and enhance/improve any existing data protection monitoring and controls. They serve as an escalation point for critical and complex tool issues, perform configuration and testing of data protection services, assists with developing and documenting work processes, and trains other members of the team. The primary focus for this role is to act as a Subject Matter Expert for protecting data in a hybrid cloud environment.
• Assess existing Insider Threat and DLP capabilities, identify gaps, develop technical and non-technical indicators, and work on the team with stakeholders • Responsible for lifecycle support in the areas of the cloud data protection strategy • Perform project tasks independently, and may assist in the efforts of others • Run Proofs of Concept, and make procurement recommendations to the CISO for Data Protection and Insider Threat technologies • Conduct risk-based tests and trials of users and groups across entire enterprise; develop investigative action plans based on findings • Proactively work with others and develop relationships across the company and provide specialized support by gathering, handling, examining, preparing, entering, searching, retrieving, identifying and/or comparing digital and/or physical evidence • Use forensically sound procedures to determine results • Provide metrics to show program effectiveness and maturity
• Minimum 4 years professional experience, 2+ years of operational experience is required; must have implemented and managed data protection (DLP,CASB) platforms; must possess strong technical knowledge of cloud applications and cloud architecture, system policies, rules, etc • Experience performing security event and incident detection and handling in a large corporate environment, gathering and analysis of threat intelligence, computer network surveillance/monitoring • Experience working independently with minimal supervision • Knowledge of data classification solutions • Experience with metadata management and data tagging and creating custom data analytics for data security • Strong organizational, communication and planning skills • Ability to work under pressure with efficiency and accuracy • Ability to plan and prioritize workload
• BS in Information Systems, Computer Science or related field preferred • Relevant Information Security or technical qualifications (e.g. CISSP, CISM, CISA, etc.) preferred • Cloud Security Certifications preferred (e.g. AWS Certified Security)