Job Overview:
Pay Range:ย $60hr - $65hr
Requirement/Must Have:
- 3+ years experience supporting enterprise cybersecurity operations, including threat monitoring, incident response, and risk analysis.
- 3+ years hands-on experience working with data protection technologies such as data loss prevention (DLP), insider risk management tools, and data security posture management for AI (DSPM for AI).
- 3+ years experience reviewing and triaging data related security alerts, analyzing access and movement of sensitive information, documenting findings, and escalating incidents according to established procedures.
- 3+ years of collaborating with technical and non-technical teams to resolve security issues and supporting continuous improvement in the agencyโs data security posture.
Responsibilities:
- Monitor and administer Data Loss Prevention (DLP) policies and controls.
- Investigate potential data loss, data exposure, and unauthorized access incidents.
- Support Data Security Posture Management (DSPM) initiatives related to AI and Copilot.
- Review the movement, storage, and sharing of sensitive information.
- Assist in implementation of data classification and data handling requirements.
- Participate in data governance initiatives and support data owners and stewards.
- Review and triage security alerts from DLP, Insider Risk Management, DSPM, and other security platforms.
- Investigate suspicious activity involving sensitive information.
- Document findings and maintain investigation records.
- Escalate incidents according to agency incident response procedures.
- Assist with containment, recovery, and post-incident activities.
- Monitor Insider Risk Management alerts and cases.
- Analyze user activity associated with potential policy violations.
- Conduct investigations while maintaining confidentiality and proper chain of evidence.
- Recommend corrective actions and risk mitigation strategies.
- Participate in third-party and vendor security assessments.
- Review vendor security documentation, audit reports, and questionnaires.
- Identify cybersecurity risks associated with third-party services.
- Assist in tracking remediation efforts and risk acceptance decisions.
- Support cybersecurity audits and compliance reviews.
- Collect and analyze evidence for regulatory and policy requirements.
- Assist with risk assessments and control validation activities.
- Maintain documentation supporting compliance efforts.
- Work with technical and non-technical staff to address security concerns.
- Prepare reports, metrics, and presentations regarding security risks and trends.
- Participate in cybersecurity awareness and training initiatives.
- Recommend improvements to security policies, procedures, and controls.
Nice to Have:
- Experience working with AI driven security tools, Cortex, particularly DSPM platforms designed to manage sensitive data used by AI systems.
- Experience finetuning DLP policies, refining insider risk alerts, or supporting data governance programs.
- Familiarity with Azure security, identity-based access controls, conditional access, and security automation or scripting.
Qualification And Education:
- A bachelorโs degree in cybersecurity, information technology, computer science, or a related field is required; equivalent experience may be considered.
- A foundational security certification such as CompTIA Security+ or GIAC Security Essentials (GSEC) is required.
- Preferred certifications include Microsoft SC100, SC200, CEH, or an Associate level CISSP.
Founded in 2010 and headquartered in the Washington, DC metro area, Cynet Systems Inc. is a leading staffing and recruiting powerhouse. Proudly recognized as a nationally and locally certified diversity firm, Cynet delivers agile, scalable talent solutions across industries. With an active footprint in all 50 U.S. states and Canada, we support thousands of consultants through our expansive, high-performing recruitment engine operating across North America and Asiaโensuring speed, quality, and consistency in every hire.